CVE-2018-25033

Опубликовано: 08 мая 2022

Источник: nvd

CVSS3: 8.1

CVSS2: 5.8

EPSS Низкий

Описание

ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_connects_remove_1 (called from stl_remove_degenerate) in connect.c in libadmesh.a.

Ссылки

https://github.com/admesh/admesh/issues/28
Exploit
Issue Tracking
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/05/msg00029.html
Mailing List
Third Party Advisory
https://github.com/admesh/admesh/issues/28
Exploit
Issue Tracking
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/05/msg00029.html
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:admesh_project:admesh:*:*:*:*:*:*:*:*

Версия до 0.98.4 (включая)

Конфигурация 2

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00484

Низкий

8.1 High

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

CVE-2018-25033

CVSS3: 8.1

ubuntu

больше 3 лет назад

ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_connects_remove_1 (called from stl_remove_degenerate) in connect.c in libadmesh.a.

CVE-2018-25033

CVSS3: 8.1

debian

больше 3 лет назад

ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_ ...

GHSA-5jrq-582v-9767

CVSS3: 8.1

github

больше 3 лет назад

Out-of-bounds read in admesh

EPSS

Процентиль: 65%

0.00484

Низкий

8.1 High

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-125