Описание
An issue was discovered in mouse07410 asn1c thru 0.9.29 (2025-03-20) - a fork of vlm asn1c. In UPER (Unaligned Packed Encoding Rules), asn1c-generated decoders fail to enforce INTEGER constraints when the bound is positive and exceeds 32 bits in length, potentially allowing incorrect or malicious input to be processed.
EPSS
Процентиль: 23%
0.00076
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-1284
Связанные уязвимости
CVSS3: 9.8
github
6 месяцев назад
An issue was discovered in mouse07410 asn1c thru 0.9.29 (2025-03-20) - a fork of vlm asn1c. In UPER (Unaligned Packed Encoding Rules), asn1c-generated decoders fail to enforce INTEGER constraints when the bound is positive and exceeds 32 bits in length, potentially allowing incorrect or malicious input to be processed.
EPSS
Процентиль: 23%
0.00076
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-1284