Описание
AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, a heap buffer overflow vulnerability has been identified in the AIS::Message class of AIS-catcher. This vulnerability allows an attacker to write approximately 1KB of arbitrary data into a 128-byte buffer. This issue has been patched in version 0.64.
Ссылки
- Patch
- ExploitVendor Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.64 (исключая)
cpe:2.3:a:aiscatcher:ais-catcher:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00084
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-131
CWE-787
EPSS
Процентиль: 25%
0.00084
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-131
CWE-787