Lucene search
Veracode Vulnerability DatabaseVERACODE:41821HistoryJul 28, 2023 - 8:36 a.m.
Arbitrary Code Execution
2023-07-2808:36:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
arbitrary code execution
libopenbabel.so
groformat.cpp
vulnerability
input file parsing
readmolecule
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
30.0%
libopenbabel.so is vulnerable to Arbitrary Code Execution. The vulnerability exists when parsing an input file via ReadMolecule at groformat.cpp which allows an attacker to inject and execute arbitrary code using a specially crafted malformed file.
Related
cve
cve
CVE-2022-42885
2023-07-21 21:15:10
debiancve
debiancve
CVE-2022-42885
2023-07-21 21:15:10
ubuntucve
ubuntucve
CVE-2022-42885
2023-07-21 00:00:00
vulnrichment
vulnrichment
CVE-2022-42885
2023-07-21 20:25:40
talos
talos
Open Babel GRO format res uninitialized pointer dereference vulnerability
2023-07-21 00:00:00
cvelist
cvelist
CVE-2022-42885
2023-07-21 20:25:40
prion
prion
Null pointer dereference
2023-07-21 21:15:00
nvd
nvd
CVE-2022-42885
2023-07-21 21:15:10
talosblog
talosblog
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
30.0%
Related for VERACODE:41821