CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
68.8%
A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. Thread allocation can lead to memory corruption. An attacker can create threads to trigger this vulnerability.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | uclibc | <= 1.0.35-1 | uclibc_1.0.35-1_all.deb |
Debian | 11 | all | uclibc | <= 1.0.35-1 | uclibc_1.0.35-1_all.deb |
Debian | 999 | all | uclibc | <= 1.0.35-1 | uclibc_1.0.35-1_all.deb |
Debian | 13 | all | uclibc | <= 1.0.35-1 | uclibc_1.0.35-1_all.deb |