Описание
Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.
Ссылки
- ExploitIssue TrackingPatchThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:erofs-utils_project:erofs-utils:1.6:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00695
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
CWE-787
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 2 лет назад
Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.
CVSS3: 7.8
debian
больше 2 лет назад
Heap Buffer Overflow in the erofs_read_one_data function at data.c in ...
CVSS3: 7.8
github
больше 2 лет назад
Heap Buffer Overflow in the erofs_read_one_data function at data.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.
EPSS
Процентиль: 71%
0.00695
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
CWE-787