Medium severity6.5OSV Advisory· Published May 30, 2018· Updated Jun 17, 2026
CVE-2018-11436
CVE-2018-11436
Description
The buffer_addraw function in buffer.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
Affected products
2- Range: v0.2, v0.3
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2018/May/48nvdExploitMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.