VYPR

Xlnt

by Xlnt Community

Source repositories

CVEs (5)

  • CVE-2026-3665LowMar 7, 2026
    risk 0.21cvss 3.3epss 0.00

    A vulnerability was identified in xlnt-community xlnt up to 1.6.1. The affected element is the function xlnt::detail::xlsx_consumer::read_office_document of the file source/detail/serialization/xlsx_consumer.cpp of the component XLSX File Parser. The manipulation leads to null…

  • CVE-2026-3664LowMar 7, 2026
    risk 0.21cvss 3.3epss 0.00

    A vulnerability was determined in xlnt-community xlnt up to 1.6.1. Impacted is the function xlnt::detail::compound_document::read_directory of the file source/detail/cryptography/compound_document.cpp of the component Encrypted XLSX File Parser. Executing a manipulation can lead…

  • CVE-2026-3663LowMar 7, 2026
    risk 0.21cvss 3.3epss 0.00

    A vulnerability was found in xlnt-community xlnt up to 1.6.1. This issue affects the function xlnt::detail::compound_document_istreambuf::xsgetn of the file source/detail/cryptography/compound_document.cpp of the component XLSX File Parser. Performing a manipulation results in…

  • CVE-2026-3463LowMar 3, 2026
    risk 0.21cvss 3.3epss 0.00

    A weakness has been identified in xlnt-community xlnt up to 1.6.1. Impacted is the function xlnt::detail::binary_writer::append of the file source/detail/binary.hpp of the component Compound Document Parser. This manipulation causes heap-based buffer overflow. The attack can…

  • CVE-2026-2703LowFeb 19, 2026
    risk 0.14cvss 3.3epss 0.00

    A weakness has been identified in xlnt-community xlnt up to 1.6.1. Impacted is the function xlnt::detail::decode_base64 of the file source/detail/cryptography/base64.cpp of the component Encrypted XLSX File Parser. Executing a manipulation can lead to off-by-one. The attack…