Lucene search

K
nvd[email protected]NVD:CVE-2021-32420
HistoryAug 22, 2023 - 7:16 p.m.

CVE-2021-32420

2023-08-2219:16:20
CWE-787
web.nvd.nist.gov
dpic 2021.01.01
heap-based buffer overflow
thestorestring function

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

17.0%

dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y.

Affected configurations

NVD
Node
dpic_projectdpicMatch2021-01-01

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

17.0%