ID CVE-2020-36148
Summary Incorrect handling of input data in verifyAttribute function in the libmysofa library 0.5 - 1.1 will lead to NULL pointer dereference and segmentation fault error in case of restrictive memory protection or near NULL pointer overwrite in case of no memory restrictions (e.g. in embedded environments).
References
Vulnerable Configurations
  • cpe:2.3:a:symonics:libmysofa:0.5:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:0.6:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:0.7:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:0.8:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:0.9:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:0.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:0.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:symonics:libmysofa:1.1:*:*:*:*:*:*:*
    cpe:2.3:a:symonics:libmysofa:1.1:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 09-03-2021 - 15:52)
Impact:
Exploitability:
CWE CWE-476
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
Last major update 09-03-2021 - 15:52
Published 08-02-2021 - 21:15
Last modified 09-03-2021 - 15:52
Back to Top