GHSA-cvfr-xv48-v96r

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.

Ссылки

EPSS

Процентиль: 71%

0.00681

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2020-14983

Дефекты

CWE-120

Связанные уязвимости

CVE-2020-14983

CVSS3: 9.8

ubuntu

больше 5 лет назад

The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.

CVE-2020-14983

CVSS3: 9.8

nvd

больше 5 лет назад

The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.

CVE-2020-14983

CVSS3: 9.8

debian

больше 5 лет назад

The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't valid ...

openSUSE-SU-2020:0939-1

suse-cvrf

больше 5 лет назад

Security update for chocolate-doom

openSUSE-SU-2020:0928-1

suse-cvrf

больше 5 лет назад

Security update for chocolate-doom

EPSS

Процентиль: 71%

0.00681

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2020-14983

Дефекты

CWE-120