Lucene search

K
osvGoogleOSV:CVE-2020-35357
HistoryAug 22, 2023 - 7:16 p.m.

CVE-2020-35357

2023-08-2219:16:20
Google
osv.dev
3
buffer overflow
gsl
arbitrary code execution
software vulnerability

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

31.4%

A buffer overflow can occur when calculating the quantile value using the Statistics Library of GSL (GNU Scientific Library), versions 2.5 and 2.6. Processing a maliciously crafted input data for gsl_stats_quantile_from_sorted_data of the library may lead to unexpected application termination or arbitrary code execution.

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

31.4%