Lucene search

GoogleOSV:CVE-2023-4322

HistoryAug 14, 2023 - 4:15 p.m.

CVE-2023-4322

2023-08-1416:15:09

Google

osv.dev

cve-2023-4322

heap-based

software

security

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

46.9%

JSON

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.

References

github.com/radareorg/radare2/commit/ba919adb74ac368bf76b150a00347ded78b572dd

huntr.dev/bounties/06e2484c-d6f1-4497-af67-26549be9fffd

lists.fedoraproject.org/archives/list/[email protected]/message/64KUV6OGEVQ75QOV35PUVVDOJTKSJHYN/

lists.fedoraproject.org/archives/list/[email protected]/message/SOZ6XCADVAPAIHMVSV3FUAN742BHXF55/

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.1

Confidence

High

EPSS

0.001

Percentile

46.9%

JSON

Related for OSV:CVE-2023-4322