Lucene search
Redhat.comRH:CVE-2020-18232HistoryAug 25, 2023 - 5:46 p.m.
CVE-2020-18232
2023-08-2517:46:11
redhat.com
access.redhat.com
6
hdf5
local attacker
arbitrary code
flaw
bounds checking
h5s_close function
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
68.6%
A flaw was found in HDF5, which allows a local, authenticated attacker to execute arbitrary code on the system, caused by improper bounds checking by the H5S_close function in H5S.c. By using a specially crafted file, an attacker can execute arbitrary code on the system.
Related
ubuntucve
ubuntucve
CVE-2020-18232
2023-08-22 00:00:00
prion
prion
Buffer overflow
2023-08-22 19:15:00
nvd
nvd
CVE-2020-18232
2023-08-22 19:15:54
debiancve
debiancve
CVE-2020-18232
2023-08-22 19:15:54
cve
cve
CVE-2020-18232
2023-08-22 19:15:54
osv
osv
CVE-2020-18232
2023-08-22 19:15:54
cvelist
cvelist
CVE-2020-18232
2023-08-22 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
68.6%
Related for RH:CVE-2020-18232