VYPR
Vendor

Groff

Products
2
CVEs
2
Across products
3
Status
Private

Products

2

Recent CVEs

2
  • CVE-2001-1022Jul 26, 2001
    risk 0.04cvss epss 0.11

    Format string vulnerability in pic utility in groff 1.16.1 and other versions, and jgroff before 1.15, allows remote attackers to bypass the -S option and execute arbitrary commands via format string specifiers in the plot command.

  • CVE-2004-1296Dec 31, 2004
    risk 0.00cvss epss 0.00

    The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files.