Skip to main content

Re2C

2 CVEs product

Monthly

CVE-2022-23901 CRITICAL POC Act Now

A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/dead_rules.cc. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Re2C
NVD GitHub
CVSS 3.1
9.8
EPSS
1.6%
CVE-2020-11958 HIGH PATCH This Week

re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Memory Corruption Re2C Ubuntu Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
1.7%
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/dead_rules.cc. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Re2C
NVD GitHub
EPSS 2% CVSS 7.8
HIGH PATCH This Week

re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Memory Corruption Re2C +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy