Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-35494

Опубликовано: 04 янв. 2021
Источник: nvd
CVSS3: 6.1
CVSS2: 5.8
EPSS Низкий

Описание

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:gnu:binutils:*:*:*:*:*:*:*:*
Версия до 2.34 (исключая)
Конфигурация 2
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire\,_enterprise_sds_\&_hci_storage_node:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:-:*:*:*:*:*:*:*
cpe:2.3:o:broadcom:brocade_fabric_operating_system_firmware:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:netapp:hci_compute_node_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:hci_compute_node:-:*:*:*:*:*:*:*

EPSS

Процентиль: 30%
0.00113
Низкий

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-908

Связанные уязвимости

ubuntu логотип

CVE-2020-35494

CVSS3: 6.1
ubuntu
около 5 лет назад

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

redhat логотип

CVE-2020-35494

CVSS3: 6.1
redhat
около 6 лет назад

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

msrc логотип

CVE-2020-35494

CVSS3: 6.1
msrc
около 5 лет назад

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

debian логотип

CVE-2020-35494

CVSS3: 6.1
debian
около 5 лет назад

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is ab ...

github логотип

GHSA-4cpw-77g4-8rhj

CVSS3: 6.1
github
больше 3 лет назад

There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.

EPSS

Процентиль: 30%
0.00113
Низкий

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-908