CVE-2022-48174

Опубликовано: 22 авг. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.

Ссылки

https://bugs.busybox.net/show_bug.cgi?id=15216
Issue Tracking
Vendor Advisory
https://bugs.busybox.net/show_bug.cgi?id=15216
Issue Tracking
Vendor Advisory
https://security.netapp.com/advisory/ntap-20241129-0001/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:busybox:busybox:*:*:*:*:*:*:*:*

Версия до 1.35.0 (включая)

EPSS

Процентиль: 63%

0.00451

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2022-48174

CVSS3: 9.8

ubuntu

почти 2 года назад

There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.

CVE-2022-48174

CVSS3: 9.8

redhat

почти 2 года назад

There is a stack overflow vulnerability in ash.c:6030 in busybox before 1.35. In the environment of Internet of Vehicles, this vulnerability can be executed from command to arbitrary code execution.

CVE-2022-48174

CVSS3: 9.8

msrc

4 месяца назад

Описание отсутствует

CVE-2022-48174

CVSS3: 9.8

debian

почти 2 года назад

There is a stack overflow vulnerability in ash.c:6030 in busybox befor ...

SUSE-SU-2023:3820-1

suse-cvrf

больше 1 года назад

Security update for busybox

EPSS

Процентиль: 63%

0.00451

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787