exploitDog

GHSA-4r7w-2gx2-27xp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

NREL EnergyPlus, Versions 8.6.0 and possibly prior versions, The application fails to prevent an exception handler from being overwritten with arbitrary code.

NREL EnergyPlus, Versions 8.6.0 and possibly prior versions, The application fails to prevent an exception handler from being overwritten with arbitrary code.

Ссылки

EPSS

Процентиль: 17%

0.00055

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-121

CWE-787

Связанные уязвимости

CVE-2019-10974

CVSS3: 5.5

nvd

больше 6 лет назад

NREL EnergyPlus, Versions 8.6.0 and possibly prior versions, The application fails to prevent an exception handler from being overwritten with arbitrary code.

EPSS

Процентиль: 17%

0.00055

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-121

CWE-787