Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-15101

Опубликовано: 27 июл. 2018
Источник: nvd
CVSS3: 7.8
CVSS3: 9.8
CVSS2: 7.5
EPSS Низкий

Описание

A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4. An attacker could cause a denial of service condition or potentially even arbitrary code execution.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:liblouis:liblouis:*:*:*:*:*:*:*:*
Версия до 2.5.4 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 54%
0.00316
Низкий

7.8 High

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-121
CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2017-15101

CVSS3: 7.8
ubuntu
больше 7 лет назад

A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4. An attacker could cause a denial of service condition or potentially even arbitrary code execution.

redhat логотип

CVE-2017-15101

CVSS3: 7.8
redhat
около 8 лет назад

A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4. An attacker could cause a denial of service condition or potentially even arbitrary code execution.

debian логотип

CVE-2017-15101

CVSS3: 7.8
debian
больше 7 лет назад

A missing patch for a stack-based buffer overflow in findTable() was f ...

github логотип

GHSA-hxf5-6w8g-jf87

CVSS3: 9.8
github
больше 3 лет назад

A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4. An attacker could cause a denial of service condition or potentially even arbitrary code execution.

oracle-oval логотип

ELSA-2017-3384

oracle-oval
почти 8 лет назад

ELSA-2017-3384: liblouis security update (MODERATE)

EPSS

Процентиль: 54%
0.00316
Низкий

7.8 High

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-121
CWE-119