Описание
libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from zip_member_read_all) in zip-reader.c.
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1Версия до 2.0.1 (включая)
cpe:2.3:a:gnu:pspp:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.0004
Низкий
4.5 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-122
CWE-787
Связанные уязвимости
CVSS3: 4.5
ubuntu
около 1 месяца назад
libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from zip_member_read_all) in zip-reader.c.
CVSS3: 4.5
debian
около 1 месяца назад
libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a h ...
CVSS3: 4.5
github
около 1 месяца назад
libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflate_read (called indirectly from zip_member_read_all) in zip-reader.c.
EPSS
Процентиль: 12%
0.0004
Низкий
4.5 Medium
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-122
CWE-787