exploitDog

CVE-2020-22882

Опубликовано: 13 июл. 2021

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Issue was discovered in the fxParserTree function in moddable, allows attackers to cause denial of service via a crafted payload. Fixed in commit 723816ab9b52f807180c99fc69c7d08cf6c6bd61.

Ссылки

https://github.com/Moddable-OpenSource/moddable/issues/351
Exploit
Third Party Advisory
https://github.com/Moddable-OpenSource/moddable/issues/351
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:moddable:moddable:*:*:*:*:*:*:*:*

Версия до os200831 (исключая)

EPSS

Процентиль: 56%

0.00334

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-843

Связанные уязвимости

GHSA-5f7p-5pw7-8j36

github

больше 3 лет назад

Issue was discovered in the fxParserTree function in moddable, allows attackers to cause denial of service via a crafted payload. Fixed in commit 723816ab9b52f807180c99fc69c7d08cf6c6bd61.

EPSS

Процентиль: 56%

0.00334

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-843