exploitDog

CVE-2022-0497

Опубликовано: 29 авг. 2022

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of-bounds read during parsing of annotations.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=2050699
Issue Tracking
Third Party Advisory
https://github.com/openscad/openscad/issues/4043
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/openscad/openscad/pull/4044
Patch
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2050699
Issue Tracking
Third Party Advisory
https://github.com/openscad/openscad/issues/4043
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/openscad/openscad/pull/4044
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:openscad:openscad:*:*:*:*:*:*:*:*

Версия до 2022-01-09 (исключая)

EPSS

Процентиль: 40%

0.00179

Низкий

7.1 High

CVSS3

Дефекты

CWE-125

CWE-125

Связанные уязвимости

CVE-2022-0497

CVSS3: 7.1

ubuntu

больше 3 лет назад

A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of-bounds read during parsing of annotations.

CVE-2022-0497

CVSS3: 7.1

debian

больше 3 лет назад

A vulnerbiility was found in Openscad, where a .scad file with no trai ...

GHSA-326h-gchx-f5r4

CVSS3: 7.1

github

больше 3 лет назад

A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of-bounds read during parsing of annotations.

EPSS

Процентиль: 40%

0.00179

Низкий

7.1 High

CVSS3

Дефекты

CWE-125

CWE-125