Описание
md_push_block_bytes in md4c.c in md4c 0.4.5 allows attackers to trigger use of uninitialized memory, and cause a denial of service (e.g., assertion failure) via a malformed Markdown document.
Ссылки
- ExploitPatchThird Party Advisory
- ExploitPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:md4c_project:md4c:0.4.5:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00362
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-908
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 5 лет назад
md_push_block_bytes in md4c.c in md4c 0.4.5 allows attackers to trigger use of uninitialized memory, and cause a denial of service (e.g., assertion failure) via a malformed Markdown document.
CVSS3: 7.5
debian
больше 5 лет назад
md_push_block_bytes in md4c.c in md4c 0.4.5 allows attackers to trigge ...
github
больше 3 лет назад
md_push_block_bytes in md4c.c in md4c 0.4.5 allows attackers to trigger use of uninitialized memory, and cause a denial of service (e.g., assertion failure) via a malformed Markdown document.
EPSS
Процентиль: 58%
0.00362
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-908