Samurai
CVE-2021-30218
MEDIUM
Severity by source
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionNVD
samurai 1.2 has a NULL pointer dereference in writefile() in util.c via a crafted build file.
AnalysisAI
samurai 1.2 has a NULL pointer dereference in writefile() in util.c via a crafted build file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.
Technical ContextAI
This vulnerability is classified as NULL Pointer Dereference (CWE-476), which allows attackers to crash the application by dereferencing a null pointer. samurai 1.2 has a NULL pointer dereference in writefile() in util.c via a crafted build file. Affected products include: Samurai Project Samurai.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Check pointers before dereferencing. Use static analysis tools to detect null pointer paths.
samurai 0.7 has a heap-based buffer overflow in canonpath in util.c via a crafted build file. Rated high severity (CVSS
samurai 1.2 has a NULL pointer dereference in printstatus() function in build.c via a crafted build file. Rated medium s
Same weakness CWE-476 – NULL Pointer Dereference
View allSame technique Null Pointer Dereference
View allShare
External POC / Exploit Code
Leaving vuln.today