exploitDog

GHSA-j99f-hfr7-jh6r

Опубликовано: 04 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Improper buffer size check logic in wmfextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.

Improper buffer size check logic in wmfextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.

Ссылки

EPSS

Процентиль: 3%

0.00016

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2022-28787

CVSS3: 4

nvd

почти 4 года назад

Improper buffer size check logic in wmfextractor library prior to SMR May-2022 Release 1 allows out of bounds read leading to possible temporary denial of service. The patch adds buffer size check logic.

EPSS

Процентиль: 3%

0.00016

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-125