CVE-2023-46045

Опубликовано: 02 фев. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.8

Описание

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	not-affected	2.42.2-9build1
esm-apps/bionic	released	2.40.1-2ubuntu0.1~esm2
esm-apps/focal	released	2.42.2-3ubuntu0.1~esm2
esm-apps/jammy	released	2.42.2-6ubuntu0.1+esm1
esm-apps/noble	needs-triage
esm-infra-legacy/trusty	released	2.36.0-0ubuntu3.2+esm2
esm-infra/xenial	released	2.38.0-12ubuntu2.1+esm2
focal	ignored	end of standard support, was needed
jammy	needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 11%

0.00037

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2023-46045

CVSS3: 7.8

nvd

почти 2 года назад

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.

CVE-2023-46045

CVSS3: 7.8

msrc

почти 2 года назад

Описание отсутствует

CVE-2023-46045

CVSS3: 7.8

debian

почти 2 года назад

Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read vi ...

SUSE-SU-2024:1351-2

suse-cvrf

больше 1 года назад

Security update for graphviz

SUSE-SU-2024:1351-1

suse-cvrf

больше 1 года назад

Security update for graphviz

EPSS

Процентиль: 11%

0.00037

Низкий

7.8 High

CVSS3

CVE-2023-46045

Описание

Пакет graphviz

Ссылки на источники

Связанные уязвимости