Lucene search

[email protected]NVD:CVE-2020-19185

HistoryAug 22, 2023 - 7:15 p.m.

CVE-2020-19185

2023-08-2219:15:57

CWE-787

[email protected]

web.nvd.nist.gov

buffer overflow

ncurses 6.1

denial of service

one_one_mapping function

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.5%

JSON

Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.

Affected configurations

NVD

Node

gnuncursesMatch6.1

Node

netappactive_iq_unified_managerMatch-vsphere

References

seclists.org/fulldisclosure/2023/Dec/10

seclists.org/fulldisclosure/2023/Dec/11

seclists.org/fulldisclosure/2023/Dec/9

github.com/zjuchenyuan/fuzzpoc/blob/master/infotocap_poc1.md

security.netapp.com/advisory/ntap-20231006-0005/

support.apple.com/kb/HT214036

support.apple.com/kb/HT214037

support.apple.com/kb/HT214038

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.5%

JSON

Related for NVD:CVE-2020-19185

redhatcve1 ubuntucve1 cvelist1 prion1 cve1 osv1 debiancve1 amazon1 nessus7 apple3 openvas3 ibm1 ics1