exploitDog

GHSA-7q9c-c73r-h952

Опубликовано: 04 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.7

Описание

Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.

Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.

Ссылки

EPSS

Процентиль: 11%

0.00037

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-787

Связанные уязвимости

CVE-2023-21506

CVSS3: 6.7

nvd

почти 3 года назад

Out-of-bounds Write vulnerability while processing BC_TUI_CMD_SEND_RESOURCE_DATA_ARRAY command in bc_tui trustlet from Samsung Blockchain Keystore prior to version 1.3.12.1 allows local attacker to execute arbitrary code.

EPSS

Процентиль: 11%

0.00037

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-787