GHSA-qqqj-6rp2-5pw4

Опубликовано: 28 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.

Ссылки

EPSS

Процентиль: 9%

0.00032

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2023-42364

Дефекты

CWE-416

Связанные уязвимости

CVE-2023-42364

CVSS3: 5.5

ubuntu

около 2 лет назад

A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.

CVE-2023-42364

CVSS3: 7.8

redhat

около 2 лет назад

A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.

CVE-2023-42364

CVSS3: 5.5

nvd

около 2 лет назад

A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.

CVE-2023-42364

CVSS3: 5.5

msrc

5 месяцев назад

A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function.

CVE-2023-42364

CVSS3: 5.5

debian

около 2 лет назад

A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to ...

EPSS

Процентиль: 9%

0.00032

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2023-42364

Дефекты

CWE-416