Lucene search

[email protected]NVD:CVE-2020-18770

HistoryAug 22, 2023 - 7:15 p.m.

CVE-2020-18770

2023-08-2219:15:55

[email protected]

web.nvd.nist.gov

zziplib

denial-of-service

vulnerability

zzip_disk_entry_to_file_header

mmapped.c

cve-2020-18770

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

An issue was discovered in function zzip_disk_entry_to_file_header in mmapped.c in zziplib 0.13.69, which will lead to a denial-of-service.

Affected configurations

NVD

Node

zziplib_projectzziplibMatch0.13.69

References

github.com/gdraheim/zziplib/issues/69

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

Related for NVD:CVE-2020-18770

oraclelinux2 nessus7 redhat2 almalinux2 prion1 osv3 veracode1 mageia1 cvelist1 cve1 ubuntucve1 debiancve1 redhatcve1 openvas1