exploitDog

GHSA-m3cx-qgpv-5mpr

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The shoco_decompress function in the API in shoco through 2017-07-17 allows remote attackers to cause a denial of service (buffer over-read and application crash) via malformed compressed data.

The shoco_decompress function in the API in shoco through 2017-07-17 allows remote attackers to cause a denial of service (buffer over-read and application crash) via malformed compressed data.

Ссылки

EPSS

Процентиль: 74%

0.00795

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2017-11367

CVSS3: 7.5

nvd

больше 8 лет назад

The shoco_decompress function in the API in shoco through 2017-07-17 allows remote attackers to cause a denial of service (buffer over-read and application crash) via malformed compressed data.

EPSS

Процентиль: 74%

0.00795

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-125