exploitDog

GHSA-6c2f-mh7j-8w6q

Опубликовано: 29 июл. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary code via unspecified vectors.

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary code via unspecified vectors.

Ссылки

EPSS

Процентиль: 87%

0.03547

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-120

Связанные уязвимости

CVE-2022-22683

CVSS3: 10

nvd

больше 3 лет назад

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary code via unspecified vectors.

EPSS

Процентиль: 87%

0.03547

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-120