Описание
ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.
Ссылки
- PatchThird Party Advisory
- PatchThird Party Advisory
- PatchThird Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:znc:znc:1.8.0:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00965
Низкий
6.5 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 5 лет назад
ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.
CVSS3: 6.5
debian
больше 5 лет назад
ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an app ...
CVSS3: 6.5
github
больше 3 лет назад
ZNC 1.8.0 up to 1.8.1-rc1 allows attackers to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.
EPSS
Процентиль: 76%
0.00965
Низкий
6.5 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-476