Lucene search

K

GoogleOSV:CVE-2020-19189

HistoryAug 22, 2023 - 7:16 p.m.

CVE-2020-19189

2023-08-2219:16:01

Google

osv.dev

3

cve-2020-19189

buffer overflow

remote attackers

denial of service

crafted command

software

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.5%

Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.

CPENameOperatorVersion
ncurseseq6.1
ncurseseq4.2
ncurseseq5.6
ncurseseq5.7
ncurseseq5.1
ncurseseq4.1
ncurseseq5.2
ncurseseq5.8
ncurseseq5.4
ncurseseq5.3

Rows per page:

1-10 of 141

References

seclists.org/fulldisclosure/2023/Dec/10

seclists.org/fulldisclosure/2023/Dec/11

seclists.org/fulldisclosure/2023/Dec/9

github.com/zjuchenyuan/fuzzpoc/blob/master/infotocap_poc5.md

lists.debian.org/debian-lts-announce/2023/09/msg00033.html

security.netapp.com/advisory/ntap-20231006-0005/

support.apple.com/kb/HT214036

support.apple.com/kb/HT214037

support.apple.com/kb/HT214038

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

7.1 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.5%

Related for OSV:CVE-2020-19189

redhatcve1 nessus11 cvelist1 ubuntu1 cve1 ubuntucve1 openvas7 nvd1 osv2 prion1 debian1 debiancve1 amazon1 apple3 ibm1 ics1