exploitDog

GHSA-6w2f-38p5-jm2c

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action.

A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action.

Ссылки

EPSS

Процентиль: 89%

0.04378

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2017-17946

CVSS3: 9.8

nvd

около 8 лет назад

A buffer overflow in Handy Password 4.9.3 allows remote attackers to execute arbitrary code via a long "Title name" field in "mail box" data that is mishandled in an "Open from mail box" action.

EPSS

Процентиль: 89%

0.04378

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119