Veracode Vulnerability DatabaseVERACODE:42022Heap-based Buffer Overflow
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
30.0%
libopenbabel.so is vulnerable to Heap-based Buffer Overflow. The vulnerability exists in the ReadMolecule function at orcaformat.cpp when parsing an input file due to improper handling of the buffer size, which allows an attacker to provide a specially-crafted malformed file resulting in arbitrary code execution.
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
30.0%