Skip to main content

Libconfuse

3 CVEs product

Monthly

CVE-2022-40320 HIGH POC This Week

cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Libconfuse Fedora
NVD GitHub
CVSS 3.1
8.8
EPSS
1.1%
CVE-2018-19760 HIGH POC This Week

cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Libconfuse
NVD
CVSS 3.0
8.8
EPSS
1.1%
CVE-2018-14447 HIGH POC This Week

trim_whitespace in lexer.l in libConfuse v3.2.1 has an out-of-bounds read. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Libconfuse Debian Linux
NVD GitHub
CVSS 3.0
8.8
EPSS
1.8%
EPSS 1% CVSS 8.8
HIGH POC This Week

cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Libconfuse +1
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Libconfuse
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

trim_whitespace in lexer.l in libConfuse v3.2.1 has an out-of-bounds read. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Buffer Overflow Libconfuse +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy