GHSA-hwpw-xpj3-c397

Опубликовано: 03 мая 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.6

Описание

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.

Ссылки

EPSS

Процентиль: 46%

0.00231

Низкий

8.6 High

CVSS3

CVE ID

CVE-2024-34402

Дефекты

CWE-190

Связанные уязвимости

CVE-2024-34402

CVSS3: 8.6

ubuntu

больше 1 года назад

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.

CVE-2024-34402

CVSS3: 5.5

redhat

больше 1 года назад

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.

CVE-2024-34402

CVSS3: 8.6

nvd

больше 1 года назад

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.

CVE-2024-34402

CVSS3: 8.6

msrc

6 месяцев назад

Описание отсутствует

CVE-2024-34402

CVSS3: 8.6

debian

больше 1 года назад

An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine ...

EPSS

Процентиль: 46%

0.00231

Низкий

8.6 High

CVSS3

CVE ID

CVE-2024-34402

Дефекты

CWE-190