Kushal Arvind Shah

**Name of the Vulnerable Software and Affected Versions** GL.iNet Goodcloud version 1.1 **Description** The issue allows a remote attacker to access or change devices' settings due to incorrect access control. **Recommendations** For GL.iNet Goodcloud version 1.1, update to a newer version that addresses the incorrect access control issue.

**Name of the Vulnerable Software and Affected Versions** IBM i2 Analyst's Notebook versions 9.2.0 through 9.2.2 **Description** The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. A local attacker could exploit this to overflow a buffer and gain lower level privileges. **Recommendations** For versions 9.2.0 through 9.2.2, update to a version that includes the fix for the buffer overflow issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM i2 Analyst's Notebook versions 9.2.0 through 9.2.2 **Description** The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. A local attacker could exploit this to overflow a buffer and gain lower level privileges. **Recommendations** For versions 9.2.0 through 9.2.2, consider applying configuration changes to restrict access to sensitive areas of the system until a patch is available. As a temporary workaround, consider disabling any functions that may be using improper bounds checking until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Webex Player for Windows and MacOS (affected versions not specified) **Description** A vulnerability in Cisco Webex Player could allow an attacker to cause the software to terminate or gain access to memory state information related to the application. This is due to insufficient validation of values in Webex recording files stored in Webex Recording Format (WRF). An attacker could exploit this by sending a malicious WRF file to a user and persuading them to open it with the affected software, potentially crashing the software and allowing access to memory state information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Webex Player for Windows and MacOS (affected versions not specified) **Description** The issue is related to insufficient validation of values in Webex recording files that are in Webex Recording Format (WRF). An attacker could exploit this by sending a malicious WRF file to a user through a link or email attachment and persuading the user to open the file with the affected software. A successful exploit could allow the attacker to execute arbitrary code on the affected system with the privileges of the targeted user. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Webex Network Recording Player and Cisco Webex Player for Windows and MacOS (affected versions not specified) **Description** A vulnerability in the software could allow an attacker to execute arbitrary code on an affected system due to insufficient validation of values in Webex recording files that are in either Advanced Recording Format (ARF) or Webex Recording Format (WRF). An attacker could exploit this vulnerability by sending a user a malicious ARF or WRF file through a link or email attachment and persuading the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to execute arbitrary code on the affected system with the privileges of the targeted user. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel PDF Fusion version 2.6.2.0 **Description** The issue is related to an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious PDF file. **Recommendations** For Corel PDF Fusion version 2.6.2.0, consider avoiding the use of the software to parse PDF files until a patch is available. As a temporary workaround, refrain from opening PDF files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel Presentations version 20.0.0.200 **Description** The issue is related to an out-of-bounds read when parsing a crafted file, specifically affecting the IPPP82.FLT module in Corel Presentations. This could allow an unauthenticated attacker to access unauthorized system memory in the context of the current user by leveraging a malicious PPT file. Exploitation requires user interaction, where a victim must open the malicious file. **Recommendations** For Corel Presentations version 20.0.0.200, consider avoiding the use of the IPPP82.FLT module until a patch is available, or refrain from opening untrusted PPT files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel Presentations version 2020 20.0.0.200 **Description** The issue is related to an out-of-bounds read vulnerability in the UAX200.dll library of Corel Presentations. This vulnerability can be exploited by an unauthenticated attacker to access unauthorized system memory in the context of the current user. Exploitation requires user interaction, where a victim must open a specially crafted PPT file. **Recommendations** For Corel Presentations version 2020 20.0.0.200, consider avoiding the use of the UAX200.dll library until a patch is available. As a temporary workaround, restrict the opening of PPT files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel PDF Fusion version 2.6.2.0 **Description** The issue is related to a heap corruption vulnerability when parsing a crafted file, which can allow an unauthenticated attacker to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious PDF file. **Recommendations** For Corel PDF Fusion version 2.6.2.0, consider avoiding the use of crafted PDF files until a patch is available. As a temporary workaround, restrict the opening of PDF files from untrusted sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Corel PhotoPaint Standard 2020 version 22.0.0.474 **Description** The issue is related to an out-of-bounds write vulnerability when parsing a crafted file, which can allow an attacker to execute arbitrary code in the context of the current user. Exploitation requires user interaction, where a victim must open a malicious CPT file. **Recommendations** For Corel PhotoPaint Standard 2020 version 22.0.0.474, avoid opening malicious or untrusted CPT files until a patch is available. As a temporary workaround, consider restricting the use of the file parsing functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Corel WordPerfect version 20.0.0.200 **Description** The issue is related to an Out-of-bounds Write vulnerability in the Word97Import200.dll library when parsing a crafted file. This could allow an unauthenticated attacker to achieve arbitrary code execution in the context of the current user by exploiting this vulnerability with a specially formed DOC file. Exploitation requires user interaction, where a victim must open a malicious DOC file. **Recommendations** For Corel WordPerfect version 20.0.0.200, consider avoiding the use of the Word97Import200.dll library until a patch is available. As a temporary workaround, refrain from opening DOC files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel DrawStandard 2020 version 22.0.0.474 **Description** The issue is related to an Out-of-bounds Read vulnerability when parsing a crafted file, allowing an unauthenticated attacker to access unauthorized system memory in the context of the current user. Exploitation requires user interaction, where a victim must open a malicious CDR file. This vulnerability is associated with the CrlPlatform.dll library in the CorelDRAW Standard vector graphics editor, which can allow a remote attacker to gain unauthorized access to protected information using a specially formed CDR file. **Recommendations** For Corel DrawStandard 2020 version 22.0.0.474, consider avoiding the use of the CrlPlatform.dll library until a patch is available. As a temporary workaround, refrain from opening suspicious or untrusted CDR files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel Presentations version 20.0.0.200 **Description** The issue is related to an Out-of-bounds Read vulnerability in the IPPP72.FLT module when parsing a crafted file. This could allow an unauthenticated attacker to access unauthorized system memory in the context of the current user. Exploitation requires user interaction, specifically opening a malicious PPT file. **Recommendations** For Corel Presentations version 20.0.0.200, consider avoiding the use of the IPPP72.FLT module until a patch is available. As a temporary workaround, refrain from opening suspicious or untrusted PPT files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel Presentations 2020 version 20.0.0.200 **Description** The issue is related to an out-of-bounds write vulnerability in the IBJPG2.FLT library of Corel Presentations. This vulnerability can be exploited by an unauthenticated attacker to achieve arbitrary code execution in the context of the current user. The exploitation requires user interaction, where a victim must open a malicious PPT file. **Recommendations** For Corel Presentations 2020 version 20.0.0.200, consider avoiding the use of the IBJPG2.FLT library until a patch is available. As a temporary workaround, refrain from opening untrusted or malicious PPT files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel PDF Fusion version 2.6.2.0 **Description** The issue is related to an Out-of-bounds Write vulnerability in the Coreip.dll file when parsing a crafted file. This could allow an unauthenticated attacker to achieve arbitrary code execution in the context of the current user. Exploitation requires user interaction, where a victim must open a malicious PDF file. **Recommendations** For Corel PDF Fusion version 2.6.2.0, consider avoiding the use of the Coreip.dll file until a patch is available. As a temporary workaround, refrain from opening PDF files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel DrawStandard 2020 version 22.0.0.474 **Description** The issue is related to an Out-of-bounds Read vulnerability when parsing a crafted file, which could allow an unauthenticated attacker to access unauthorized system memory in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious CDR file. This vulnerability is associated with the CdrCore.dll library in the Corel DrawStandard 2020. **Recommendations** For Corel DrawStandard 2020 version 22.0.0.474, consider avoiding the use of CdrCore.dll library until a patch is available. As a temporary workaround, refrain from opening suspicious or untrusted CDR files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel PhotoPaint Standard version 22.0.0.474 **Description** The issue is related to an out-of-bounds read in the CDRRip.dll library, which can be exploited by a remote attacker to execute arbitrary code in the context of the current user. This can be achieved by using a specially crafted CPT file. The exploitation requires user interaction, as the victim must open the malicious file. **Recommendations** For Corel PhotoPaint Standard version 22.0.0.474, consider avoiding the use of the CDRRip.dll library until a patch is available. As a temporary workaround, refrain from opening untrusted CPT files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Corel Presentations version 20.0.0.200 **Description** The issue is related to an out-of-bounds read when parsing a crafted file, allowing an unauthenticated attacker to access unauthorized system memory in the context of the current user. Exploitation requires user interaction, where a victim must open a malicious PPT file. This can lead to unauthorized access to protected information. **Recommendations** For Corel Presentations version 20.0.0.200, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Adobe Animate (affected versions not specified) Corel PhotoPaint Standard 2020 version 22.0.0.474 Description: The issue is related to a buffer overflow in memory, which can be exploited by a remote attacker to execute arbitrary code. In the case of Corel PhotoPaint Standard 2020, the vulnerability occurs when parsing a crafted file, allowing an unauthenticated attacker to achieve arbitrary code execution in the context of the current user. This requires user interaction, where a victim must open a malicious file. Recommendations: For Adobe Animate, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Corel PhotoPaint Standard 2020 version 22.0.0.474, consider avoiding the use of CDRRip.dll when parsing untrusted files until a patch is available. As a temporary workaround, restrict the opening of potentially malicious CPT files to minimize the risk of exploitation.