CVE-2022-27419 - rtl_433 21.12 was discovered to contain a stack overflow in the function acurite_00275rm_decode at /

CVE-2022-27419

Summary

rtl_433 21.12 was discovered to contain a stack overflow in the function acurite_00275rm_decode at /devices/acurite.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.

References

https://github.com/merbanan/rtl_433/issues/2012

Vulnerable Configurations

cpe:2.3:a:rtl_433_project:rtl_433:21.12:*:*:*:*:*:*:*
cpe:2.3:a:rtl_433_project:rtl_433:21.12:*:*:*:*:*:*:*

CVSS

Base:	4.3 (as of 20-04-2022 - 16:56)
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:P

Last major update

20-04-2022 - 16:56

Published

12-04-2022 - 20:15

Last modified

20-04-2022 - 16:56