Описание
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.
Ссылки
- ExploitMailing ListTechnical DescriptionVendor Advisory
- ExploitMailing ListVendor Advisory
- Mailing ListVendor Advisory
- Mailing ListVendor Advisory
- ExploitThird Party Advisory
- ExploitMailing ListTechnical DescriptionVendor Advisory
- ExploitMailing ListVendor Advisory
- Mailing ListVendor Advisory
- Mailing ListVendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
EPSS
6.3 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
Связанные уязвимости
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.
Use after free in garbage collector and finalizer of lgc.c in Lua inte ...
Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.
EPSS
6.3 Medium
CVSS3
4.3 Medium
CVSS2