Skip to main content

Libpff

2 CVEs product

Monthly

CVE-2018-20348 MEDIUM POC This Month

libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows attackers to cause a denial of service (infinite recursion) via a crafted file, related to. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Libpff
NVD GitHub
CVSS 3.0
5.5
EPSS
0.4%
CVE-2018-11723 MEDIUM This Month

The libpff_name_to_id_map_entry_read function in libpff_name_to_id_map.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure (heap-based buffer over-read). Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Libpff
NVD
CVSS 3.0
5.5
EPSS
1.2%
EPSS 0% CVSS 5.5
MEDIUM POC This Month

libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows attackers to cause a denial of service (infinite recursion) via a crafted file, related to. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Libpff
NVD GitHub
EPSS 1% CVSS 5.5
MEDIUM This Month

The libpff_name_to_id_map_entry_read function in libpff_name_to_id_map.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure (heap-based buffer over-read). Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Buffer Overflow Libpff
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy