exploitDog

GHSA-fppm-3x24-27q8

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

Ссылки

EPSS

Процентиль: 93%

0.0991

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-193

Связанные уязвимости

CVE-2001-0609

CVSS3: 9.8

nvd

около 24 лет назад

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function.

EPSS

Процентиль: 93%

0.0991

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-193