CVE-2022-23946

🗓️ 04 Feb 2022 22:28:58Reported by talosType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 75 Views

A buffer overflow vulnerability in KiCad EDA 6.0.1 and master commit de006fc010 can lead to code execution

Reporter	Title	Published	Views	Family All 40
CNNVD	Kicad 缓冲区错误漏洞	3 Feb 202200:00	–	cnnvd
CNVD	KiCad Buffer Overflow Vulnerability (CNVD-2022-11186)	16 Feb 202200:00	–	cnvd
Cvelist	CVE-2022-23946	4 Feb 202222:28	–	cvelist
Debian	[SECURITY] [DLA 2998-1] kicad security update	10 May 202202:09	–	debian
Debian	[SECURITY] [DLA 3078-1] kicad security update	20 Aug 202215:44	–	debian
Debian	[SECURITY] [DSA 5214-1] kicad security update	21 Aug 202218:43	–	debian
Debian CVE	CVE-2022-23946	4 Feb 202222:28	–	debiancve
Tenable Nessus	Debian DLA-2998-1 : kicad - LTS security update	11 May 202200:00	–	nessus
Tenable Nessus	Debian dla-3078 : kicad - security update	20 Aug 202200:00	–	nessus
Tenable Nessus	Debian DSA-5214-1 : kicad - security update	22 Aug 202200:00	–	nessus

NVD

Vulners

Node

kicad kicad_edaMatch6.0.1

Node

fedoraproject fedoraMatch35

Node

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

debian debian_linuxMatch11.0

[
  {
    "product": "KiCad",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "KiCad EDA 6.0.1,KiCad EDA master commit de006fc010"
      }
    ]
  }
]

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2022/08/msg00010.html
debian	www.debian.org/security/2022/dsa-5214
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2022-1460
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5EMCGSSP3FIWCSL2KXVXLF35JYZKZE5Q/
lists	www.lists.debian.org/debian-lts-announce/2022/05/msg00009.html

21 Nov 2024 06:49Current

7.7High risk

Vulners AI Score7.7

CVSS 26.8

CVSS 3.17.8

CVSS 37.8

EPSS0.00531

SSVC