libyal liblnk 20191006 has a heap-based buffer over-read in the network_share_name_offset>20 code block of liblnk_location_information_read_data in liblnk_location_information.c, a different issue. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Buffer Overflow
Information Disclosure
Liblnk
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.4%