Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2022-3349

Опубликовано: 28 сент. 2022
Источник: nvd
CVSS3: 6.8
EPSS Низкий

Описание

A vulnerability was found in Sony PS4 and PS5. It has been classified as critical. This affects the function UVFAT_readupcasetable of the component exFAT Handler. The manipulation of the argument dataLength leads to heap-based buffer overflow. It is possible to launch the attack on the physical device. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-209679.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:sony:playstation_4_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sony:playstation_4:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:sony:playstation_5_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sony:playstation_5:-:*:*:*:*:*:*:*

EPSS

Процентиль: 32%
0.00122
Низкий

6.8 Medium

CVSS3

Дефекты

CWE-119
CWE-787

Связанные уязвимости

github логотип

GHSA-c842-h875-28j3

CVSS3: 6.8
github
больше 3 лет назад

A vulnerability was found in Sony PS4 and PS5. It has been classified as critical. This affects the function UVFAT_readupcasetable of the component exFAT Handler. The manipulation of the argument dataLength leads to heap-based buffer overflow. It is possible to launch the attack on the physical device. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-209679.

EPSS

Процентиль: 32%
0.00122
Низкий

6.8 Medium

CVSS3

Дефекты

CWE-119
CWE-787