CVE-2021-33480

Опубликовано: 17 нояб. 2021

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

An use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=1962854
Issue Tracking
Third Party Advisory
https://security.gentoo.org/glsa/202401-28
https://sourceforge.net/p/jocr/bugs/40/
Exploit
Third Party Advisory
https://sourceforge.net/p/jocr/bugs/41/
Exploit
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1962854
Issue Tracking
Third Party Advisory
https://security.gentoo.org/glsa/202401-28
https://sourceforge.net/p/jocr/bugs/40/
Exploit
Third Party Advisory
https://sourceforge.net/p/jocr/bugs/41/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:optical_character_recognition_project:optical_character_recognition:*:*:*:*:*:*:*:*

Версия до 0.53-20200802 (включая)

EPSS

Процентиль: 37%

0.00164

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-416

Связанные уязвимости

CVE-2021-33480

CVSS3: 5.5

ubuntu

около 4 лет назад

An use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c.

CVE-2021-33480

CVSS3: 5.5

debian

около 4 лет назад

An use-after-free vulnerability was discovered in gocr through 0.53-20 ...

GHSA-882j-jq8h-6p6f

CVSS3: 5.5

github

больше 3 лет назад

An use-after-free vulnerability was discovered in gocr through 0.53-20200802 in context_correction() in pgm2asc.c.

EPSS

Процентиль: 37%

0.00164

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-416