Описание
An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function mdb_env_open2 if mdb_env_read_header obtains a zero value for a certain size field. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.97 (включая)
cpe:2.3:a:py-lmdb_project:py-lmdb:*:*:*:*:*:*:*:*
EPSS
Процентиль: 52%
0.00292
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-369
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 6 лет назад
An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function mdb_env_open2 if mdb_env_read_header obtains a zero value for a certain size field. NOTE: this outcome occurs when accessing a data.mdb file supplied by an attacker.
CVSS3: 7.5
debian
больше 6 лет назад
An issue was discovered in py-lmdb 0.97. There is a divide-by-zero err ...
EPSS
Процентиль: 52%
0.00292
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-369