CVE-2020-24372

Опубликовано: 17 авг. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.

Ссылки

https://github.com/LuaJIT/LuaJIT/issues/603
Exploit
Third Party Advisory
https://github.com/LuaJIT/LuaJIT/issues/603
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/08/msg00022.html

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:luajit:luajit:*:*:*:*:*:*:*:*

Версия до 2.0.5 (включая)

cpe:2.3:a:luajit:luajit:2.1.0:beta1:*:*:*:*:*:*

cpe:2.3:a:luajit:luajit:2.1.0:beta2:*:*:*:*:*:*

cpe:2.3:a:luajit:luajit:2.1.0:beta3:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00295

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

CVE-2020-24372

CVSS3: 7.5

ubuntu

больше 5 лет назад

LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.

CVE-2020-24372

CVSS3: 7.5

redhat

больше 5 лет назад

LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.

CVE-2020-24372

CVSS3: 7.5

debian

больше 5 лет назад

LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in ...

GHSA-cf74-x979-rggp

CVSS3: 7.5

github

больше 3 лет назад

LuaJIT through 2.1.0-beta3 has an out-of-bounds read in lj_err_run in lj_err.c.

EPSS

Процентиль: 52%

0.00295

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125