Known Vulnerabilities for products from File Project

Listed below are 18 of the newest known vulnerabilities associated with the vendor "File Project".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-55748 json Not Provided 2026-06-17 2026-06-17
CVE-2026-52751 json Not Provided 2026-06-10 2026-06-10
CVE-2026-50267 json Not Provided 2026-06-17 2026-06-18
CVE-2026-50178 json Not Provided 2026-06-22 2026-06-22
CVE-2026-49738 json Not Provided 2026-06-09 2026-06-09
CVE-2026-48089 json Not Provided 2026-06-19 2026-06-22
CVE-2026-48065 json Not Provided 2026-05-27 2026-05-28
CVE-2026-47728 json Not Provided 2026-05-26 2026-05-26
CVE-2026-47261 json Not Provided 2026-06-15 2026-06-16
CVE-2026-47179 json Not Provided 2026-05-29 2026-05-29
CVE-2022-48554 json File before 5.43 has an stack-based buffer over-read in file_copystr in funcs.c. NOTE: "File" is the name of an Open Source p... 5.5 - MEDIUM 2023-08-22 2024-03-13
CVE-2019-18218 json cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap... 7.8 - HIGH 2019-10-21 2023-11-07
CVE-2019-8907 json do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption a... 8.8 - HIGH 2019-02-18 2020-08-24
CVE-2019-8906 json do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused. 4.4 - MEDIUM 2019-02-18 2021-12-09
CVE-2019-8905 json do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a differe... 4.4 - MEDIUM 2019-02-18 2021-12-09
CVE-2019-8904 json do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprin... 8.8 - HIGH 2019-02-18 2019-03-26
CVE-2018-10360 json The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service (out-o... 6.5 - MEDIUM 2018-06-11 2019-05-02
CVE-2017-1000249 json An issue in file() was introduced in commit 9611f31313a93aa036389c5f3b15eea53510d4d1 (Oct 2016) lets an attacker overwrite a ... 5.5 - MEDIUM 2017-09-11 2017-11-08
CVE-2014-9653 json readelf.c in file before 5.22, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before ... Not Provided 2015-03-30 2026-05-06
CVE-2014-9652 json The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x befor... Not Provided 2015-03-30 2026-05-06
Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from File Project

Type Vendor Product Version
ApplicationFile ProjectFile3.27
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report