Описание
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.
Ссылки
- Third Party AdvisoryVDB Entry
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Third Party AdvisoryVDB Entry
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:radare:radare2:1.3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00227
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 9 лет назад
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.
CVSS3: 5.5
debian
почти 9 лет назад
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 ...
CVSS3: 5.5
github
больше 3 лет назад
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.
EPSS
Процентиль: 45%
0.00227
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-476