exploitDog

GHSA-3744-988x-mqxh

Опубликовано: 14 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology SSL VPN Client before 1.4.7-0687 allows local users to conduct denial-of-service attacks via unspecified vectors.

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology SSL VPN Client before 1.4.7-0687 allows local users to conduct denial-of-service attacks via unspecified vectors.

Ссылки

EPSS

Процентиль: 26%

0.00093

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2023-5748

CVSS3: 3.3

nvd

больше 2 лет назад

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology SSL VPN Client before 1.4.7-0687 allows local users to conduct denial-of-service attacks via unspecified vectors.

EPSS

Процентиль: 26%

0.00093

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-120