Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-pcw5-2cqf-cm8x

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 5.5

Описание

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.

Ссылки

EPSS

Процентиль: 48%
0.00248
Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2018-11383

Дефекты

CWE-908

Связанные уязвимости

ubuntu логотип

CVE-2018-11383

CVSS3: 5.5
ubuntu
больше 7 лет назад

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.

nvd логотип

CVE-2018-11383

CVSS3: 5.5
nvd
больше 7 лет назад

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.

debian логотип

CVE-2018-11383

CVSS3: 5.5
debian
больше 7 лет назад

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers ...

EPSS

Процентиль: 48%
0.00248
Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2018-11383

Дефекты

CWE-908