Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-hrqc-789v-hchf

Опубликовано: 07 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.5

Описание

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer overflow, possibly leading to out-of-bounds memory access because the mrb_str_resize function in string.c does not check for a negative length.

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer overflow, possibly leading to out-of-bounds memory access because the mrb_str_resize function in string.c does not check for a negative length.

Ссылки

EPSS

Процентиль: 59%
0.00384
Низкий

7.5 High

CVSS3

CVE ID

CVE-2018-14337

Дефекты

CWE-190

Связанные уязвимости

ubuntu логотип

CVE-2018-14337

CVSS3: 7.5
ubuntu
больше 7 лет назад

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer overflow, possibly leading to out-of-bounds memory access because the mrb_str_resize function in string.c does not check for a negative length.

nvd логотип

CVE-2018-14337

CVSS3: 7.5
nvd
больше 7 лет назад

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer overflow, possibly leading to out-of-bounds memory access because the mrb_str_resize function in string.c does not check for a negative length.

debian логотип

CVE-2018-14337

CVSS3: 7.5
debian
больше 7 лет назад

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 ...

EPSS

Процентиль: 59%
0.00384
Низкий

7.5 High

CVSS3

CVE ID

CVE-2018-14337

Дефекты

CWE-190