Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-2325

Опубликовано: 14 янв. 2020
Источник: nvd
CVSS3: 7.8
CVSS2: 6.8
EPSS Низкий

Описание

The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:pcre:pcre:*:*:*:*:*:*:*:*
Версия до 8.37 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*
Версия до 10.0.18 (исключая)
Конфигурация 4

Одно из

cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Версия от 5.4.0 (включая) до 5.4.41 (исключая)
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Версия от 5.5.0 (включая) до 5.5.26 (исключая)
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Версия от 5.6.0 (включая) до 5.6.9 (исключая)

EPSS

Процентиль: 68%
0.0057
Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2015-2325

CVSS3: 7.8
ubuntu
больше 5 лет назад

The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.

redhat логотип

CVE-2015-2325

redhat
около 10 лет назад

The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.

debian логотип

CVE-2015-2325

CVSS3: 7.8
debian
больше 5 лет назад

The compile_branch function in PCRE before 8.37 allows context-depende ...

github логотип

GHSA-mwr9-2r49-jwhg

CVSS3: 7.8
github
около 3 лет назад

The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.

suse-cvrf логотип

SUSE-SU-2015:1273-1

suse-cvrf
почти 10 лет назад

Security update for mariadb

EPSS

Процентиль: 68%
0.0057
Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-125