Lucene search
Samsung.tv_applianceCVE-2024-32669HistoryMay 14, 2024 - 3:36 p.m.
CVE-2024-32669
2024-05-1415:36:53
CWE-20
CWE-787
CWE-125
samsung.tv_appliance
web.nvd.nist.gov
6
samsung
open source
input validation
vulnerability
overflow buffers
test code
release
escargot 4.0.0
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
7
Confidence
Low
EPSS
0
Percentile
9.0%
Improper Input Validation vulnerability in Samsung Open Source escargot JavaScript engine allows Overflow Buffers.
However, it occurs in the test code and does not include in the release.
This issue affects escargot: 4.0.0.
CNA Affected
[
{
"defaultStatus": "unaffected",
"modules": [
"TestCode"
],
"packageName": "JavaScript engine",
"product": "Escargot",
"repo": "https://github.com/Samsung/escargot/",
"vendor": "Samsung Open Source",
"versions": [
{
"status": "affected",
"version": "4.0.0"
}
]
}
]References
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
7
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-32669