Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-0198

Опубликовано: 11 июн. 2020
Источник: ubuntu
Приоритет: medium
EPSS Средний
CVSS2: 5
CVSS3: 7.5

Описание

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

РелизСтатусПримечание
bionic

released

0.6.21-4ubuntu0.5
devel

not-affected

0.6.22-2
eoan

released

0.6.21-5.1ubuntu0.5
esm-infra-legacy/trusty

released

0.6.21-1ubuntu1+esm5
esm-infra/bionic

released

0.6.21-4ubuntu0.5
esm-infra/focal

released

0.6.21-6ubuntu0.3
esm-infra/xenial

released

0.6.21-2ubuntu0.5
focal

released

0.6.21-6ubuntu0.3
precise/esm

not-affected

0.6.20-2ubuntu0.6
trusty

ignored

end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 93%
0.11111
Средний

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-0198

CVSS3: 7.5
redhat
больше 5 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

nvd логотип

CVE-2020-0198

CVSS3: 7.5
nvd
больше 5 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

debian логотип

CVE-2020-0198

CVSS3: 7.5
debian
больше 5 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBS ...

github логотип

GHSA-3pcq-2643-8rg5

CVSS3: 7.5
github
больше 3 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

fstec логотип

BDU:2021-02074

CVSS3: 7.5
fstec
больше 5 лет назад

Уязвимость фунции exif_data_load_data_content (exif-data.c) операционной системы Android, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 93%
0.11111
Средний

5 Medium

CVSS2

7.5 High

CVSS3