exploitDog

CVE-2020-13910

Опубликовано: 07 июн. 2020

Источник: nvd

CVSS3: 9.1

CVSS2: 6.4

EPSS Низкий

Описание

Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check.

Ссылки

https://git.pengutronix.de/cgit/barebox/commit/net/nfs.c?h=next&id=c0f0cbd1759a6ca6cbda4001dff5764f6633c825
Patch
Third Party Advisory
https://git.pengutronix.de/cgit/barebox/commit/net/nfs.c?h=next&id=c0f0cbd1759a6ca6cbda4001dff5764f6633c825
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pengutronix:barebox:*:*:*:*:*:*:*:*

Версия до 2020.05.0 (включая)

EPSS

Процентиль: 62%

0.00433

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

GHSA-cv8c-hmjr-8xv4

github

больше 3 лет назад

Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check.

EPSS

Процентиль: 62%

0.00433

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-125