0.001 Low
EPSS
Percentile
48.2%
Original Report:https://hackerone.com/reports/1954658
CWE-440: Expected Behavior Violation
An attacker could potentially inject data, either from stdin or from an unintended buffer. Further, without even an active attacker, this could lead to segfaults or sensitive information being exposed to an unintended recipient.
0.001 Low
EPSS
Percentile
48.2%