exploitDog

CVE-2021-30045

Опубликовано: 06 апр. 2021

Источник: nvd

CVSS3: 9.1

CVSS2: 6.4

EPSS Низкий

Описание

SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read() function.

Ссылки

https://github.com/SerenityOS/serenity/commit/4317db7498eaa5a37068052bb0310fbc6a5f78e4
Patch
Third Party Advisory
https://github.com/SerenityOS/serenity/issues/5975
Third Party Advisory
https://github.com/SerenityOS/serenity/pull/5977
Third Party Advisory
https://github.com/SerenityOS/serenity/commit/4317db7498eaa5a37068052bb0310fbc6a5f78e4
Patch
Third Party Advisory
https://github.com/SerenityOS/serenity/issues/5975
Third Party Advisory
https://github.com/SerenityOS/serenity/pull/5977
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:serenityos:serenityos:2021-03-27:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00611

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-120

Связанные уязвимости

GHSA-6m2h-c4q5-c6rp

CVSS3: 9.1

github

больше 3 лет назад

SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read() function.

EPSS

Процентиль: 69%

0.00611

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-120