CVE-2020-6582

Опубликовано: 16 мар. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call.

Ссылки

https://herolab.usd.de/security-advisories/
Third Party Advisory
https://herolab.usd.de/security-advisories/usd-2020-0001/
Exploit
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DNGKXVDB43E3KQRA6W5QZT3Z46XZLQM/
https://herolab.usd.de/security-advisories/
Third Party Advisory
https://herolab.usd.de/security-advisories/usd-2020-0001/
Exploit
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DNGKXVDB43E3KQRA6W5QZT3Z46XZLQM/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nagios:remote_plug_in_executor:3.2.1:*:*:*:*:*:*:*

Конфигурация 2

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01645

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-681

Связанные уязвимости

CVE-2020-6582

CVSS3: 7.5

ubuntu

почти 6 лет назад

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call.

CVE-2020-6582

CVSS3: 7.5

redhat

почти 6 лет назад

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call.

CVE-2020-6582

CVSS3: 7.5

debian

почти 6 лет назад

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by ...

GHSA-4wcp-4x6x-h4mf

CVSS3: 7.5

github

больше 3 лет назад

Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number during a bzero call.

EPSS

Процентиль: 82%

0.01645

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-681