Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveGitHub_MCVE-2022-24724
HistoryMar 03, 2022 - 8:15 p.m.

CVE-2022-24724

2022-03-0320:15:07
CWE-190
GitHub_M
web.nvd.nist.gov
95
2
cve-2022-24724
cmark-gfm
integer overflow
heap memory corruption
rce
commonmark
github
vulnerability
patch

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.065

Percentile

93.7%

JSON

cmark-gfm is GitHub’s extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm’s table row parsing table.c:row_from_string may lead to heap memory corruption when parsing tables who’s marker rows contain more than UINT16_MAX columns. The impact of this heap corruption ranges from Information Leak to Arbitrary Code Execution depending on how and where cmark-gfm is used. If cmark-gfm is used for rendering remote user controlled markdown, this vulnerability may lead to Remote Code Execution (RCE) in applications employing affected versions of the cmark-gfm library. This vulnerability has been patched in the following cmark-gfm versions 0.29.0.gfm.3 and 0.28.3.gfm.21. A workaround is available. The vulnerability exists in the table markdown extensions of cmark-gfm. Disabling the table extension will prevent this vulnerability from being triggered.

Affected configurations

Nvd
Vulners
Node
githubcmark-gfmRange<0.28.3.gfm.21
OR
githubcmark-gfmRange0.28.3.gfm.210.29.0.gfm.3
Node
fedoraprojectfedoraMatch34
OR
fedoraprojectfedoraMatch35
OR
fedoraprojectfedoraMatch36
VendorProductVersionCPE
githubcmark-gfm*cpe:2.3:a:github:cmark-gfm:*:*:*:*:*:*:*:*
fedoraprojectfedora34cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
fedoraprojectfedora35cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
fedoraprojectfedora36cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "cmark-gfm",
    "vendor": "github",
    "versions": [
      {
        "status": "affected",
        "version": "< 0.28.3.gfm.21"
      },
      {
        "status": "affected",
        "version": ">= 0.29.0.gfm.0, < 0.29.0.gfm.3"
      }
    ]
  }
]

References

Social References

More

Related

veracode 1
openvas 11
fedora 11
packetstorm 1
zdt 1
ubuntucve 2
almalinux 1
rocky 1
nessus 2
debiancve 1
nvd 1
osv 5
prion 1
redhat 1
cvelist 1
redhatcve 1
veracode
veracode
Remote Code Execution (RCE)
2022-03-12 09:19:01
openvas
openvas
Fedora: Security Advisory for ghc-cmark-gfm (FEDORA-2022-bc43bafcfd)
2022-03-23 00:00:00
Fedora: Security Advisory for ghc-cmark-gfm (FEDORA-2022-79b9a59e3b)
2022-03-27 00:00:00
Fedora: Security Advisory for pandoc (FEDORA-2022-1f981071eb)
2022-04-03 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: ghostwriter-2.1.2-1.fc34
2022-03-22 03:19:48
[SECURITY] Fedora 34 Update: pandoc-2.9.2.1-10.fc34
2022-04-02 01:57:10
[SECURITY] Fedora 34 Update: patat-0.8.6.1-1.1.fc34
2022-04-02 01:57:10
packetstorm
packetstorm
cmark-gfm Integer overflow
2022-04-06 00:00:00
zdt
zdt
cmark-gfm Integer overflow Exploit
2022-04-07 00:00:00
ubuntucve
ubuntucve
CVE-2022-24724
2022-03-03 00:00:00
CVE-2024-22051
2024-01-04 00:00:00
almalinux
almalinux
Important: pandoc security update
2022-07-18 00:00:00
rocky
rocky
pandoc security update
2022-07-18 00:00:00
nessus
nessus
AlmaLinux 8 : pandoc (5597) (ALSA-2022:5597)
2022-07-21 00:00:00
RHEL 8 : pandoc (RHSA-2022:5597)
2022-07-18 00:00:00
debiancve
debiancve
CVE-2022-24724
2022-03-03 20:15:07
nvd
nvd
CVE-2022-24724
2022-03-03 20:15:07
osv
osv
Important: pandoc security update
2022-07-18 00:00:00
CVE-2022-24724
2022-03-03 20:15:07
CVE-2024-22051
2024-01-04 21:15:10
prion
prion
Integer overflow
2022-03-03 20:15:00
redhat
redhat
(RHSA-2022:5597) Important: pandoc security update
2022-07-18 13:52:32
cvelist
cvelist
CVE-2022-24724 Integer overflow in table parsing extension leads to heap memory corruption
2022-03-03 19:35:09
redhatcve
redhatcve
CVE-2022-24724
2022-07-18 16:59:26

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.065

Percentile

93.7%

JSON
Related for CVE-2022-24724
veracode1openvas11fedora11packetstorm1zdt1ubuntucve2almalinux1rocky1nessus2debiancve1nvd1osv5prion1redhat1cvelist1redhatcve1