CVE-2017-7274

Опубликовано: 27 мар. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	2.3.0+dfsg-2
cosmic	not-affected	2.3.0+dfsg-2
devel	not-affected	2.3.0+dfsg-2
esm-apps/bionic	not-affected	2.3.0+dfsg-2
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
precise	ignored	end of life
precise/esm	DNE	precise was needs-triage
trusty	not-affected	code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 45%

0.00227

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-7274

CVSS3: 5.5

nvd

почти 9 лет назад

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.

CVE-2017-7274

CVSS3: 5.5

debian

почти 9 лет назад

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 ...

GHSA-pjv9-3c8f-mr4h

CVSS3: 5.5

github

больше 3 лет назад

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.

EPSS

Процентиль: 45%

0.00227

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-7274

Описание

Пакет radare2

Ссылки на источники

Связанные уязвимости