Lucene search
HistoryApr 16, 2023 - 12:15 a.m.
CVE-2020-28163
libdwarf
vulnerability
null pointer
crash
dwarf5
line-table
header
invalid form
pathname
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
50.9%
libdwarf before 20201201 allows a dwarf_print_lines.c NULL pointer dereference and application crash via a DWARF5 line-table header that has an invalid FORM for a pathname.
Affected configurations
Node
libdwarf_projectlibdwarfRange<2020-12-01
Related
cve
cve
CVE-2020-28163
2023-04-16 00:15:07
prion
prion
Null pointer dereference
2023-04-16 00:15:00
osv
osv
CVE-2020-28163
2023-04-16 00:15:07
cvelist
cvelist
CVE-2020-28163
2023-04-15 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-04-21 11:21:58
redhatcve
redhatcve
CVE-2020-28163
2021-11-25 14:17:00
debiancve
debiancve
CVE-2020-28163
2023-04-16 00:15:07
ubuntucve
ubuntucve
CVE-2020-28163
2023-04-16 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-28163 affecting package libdwarf for versions less than 0.9.0
2024-06-21 03:08:17
nessus
nessus
RHEL 8 : libdwarf (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 7 : libdwarf (Unpatched Vulnerability)
2024-05-11 00:00:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
50.9%
Related for NVD:CVE-2020-28163