Lucene search

[email protected]NVD:CVE-2021-37311

HistoryFeb 03, 2023 - 6:15 p.m.

CVE-2021-37311

2023-02-0318:15:12

CWE-120

[email protected]

web.nvd.nist.gov

buffer overflow

fcitx5

denial of service

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

40.2%

JSON

Buffer Overflow vulnerability in fcitx5 5.0.8 allows attackers to cause a denial of service via crafted message to the application’s listening port.

Affected configurations

Nvd

Node

fcitx_5_projectfcitx_5Match5.0.8

VendorProductVersionCPE
fcitx_5_projectfcitx_55.0.8cpe:2.3:a:fcitx_5_project:fcitx_5:5.0.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fcitx_5_project	fcitx_5	5.0.8	cpe:2.3:a:fcitx_5_project:fcitx_5:5.0.8:::::::*

References

fcitx-im.org

github.com/fcitx/fcitx5/pull/308

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

40.2%

JSON

Related for NVD:CVE-2021-37311

cve1 osv1 debiancve1 cvelist1 ubuntucve1 prion1