10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
100.0%
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka โGHOST.โ
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | glibc | <ย 2.18-1 | glibc_2.18-1_all.deb |
Debian | 11 | all | glibc | <ย 2.18-1 | glibc_2.18-1_all.deb |
Debian | 10 | all | glibc | <ย 2.18-1 | glibc_2.18-1_all.deb |
Debian | 999 | all | glibc | <ย 2.18-1 | glibc_2.18-1_all.deb |
Debian | 13 | all | glibc | <ย 2.18-1 | glibc_2.18-1_all.deb |
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
100.0%