VYPR
Vendor

Codelibs

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2018-14444HigJul 20, 2018
    risk 0.49cvss 7.5epss 0.01

    libdxfrw 0.6.3 has an Integer Overflow in dwgCompressor::decompress18 in dwgutil.cpp, leading to an out-of-bounds read and application crash.

  • CVE-2026-8211MedMay 9, 2026
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was detected in codelibs Fess up to 15.5.1. Affected by this issue is the function update of the file org/codelibs/fess/app/web/admin/design/AdminDesignAction.java of the component JSP File Handler. The manipulation of the argument content results in code…

  • CVE-2025-48382May 27, 2025
    risk 0.00cvss epss 0.00

    Fess is a deployable Enterprise Search Server. Prior to version 14.19.2, the createTempFile() method in org.codelibs.fess.helper.SystemHelper creates temporary files without explicitly setting restrictive permissions. This could lead to potential information disclosure, allowing…