exploitDog

GHSA-4v56-mrhv-6j2m

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

SerenityOS Unspecified is affected by: Buffer Overflow. The impact is: obtain sensitive information (context-dependent). The component is: /Userland/Libraries/LibCrypto/ASN1/DER.h Crypto::der_decode_sequence() function. The attack vector is: Parsing RSA Key ASN.1.

SerenityOS Unspecified is affected by: Buffer Overflow. The impact is: obtain sensitive information (context-dependent). The component is: /Userland/Libraries/LibCrypto/ASN1/DER.h Crypto::der_decode_sequence() function. The attack vector is: Parsing RSA Key ASN.1.

Ссылки

EPSS

Процентиль: 63%

0.00446

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2021-27343

CVSS3: 7.5

nvd

почти 5 лет назад

SerenityOS Unspecified is affected by: Buffer Overflow. The impact is: obtain sensitive information (context-dependent). The component is: /Userland/Libraries/LibCrypto/ASN1/DER.h Crypto::der_decode_sequence() function. The attack vector is: Parsing RSA Key ASN.1.

EPSS

Процентиль: 63%

0.00446

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-120