Lucene search
GoogleOSV:CVE-2023-33551HistoryJun 01, 2023 - 3:15 p.m.
CVE-2023-33551
2023-06-0115:15:09
Google
osv.dev
2
cve-2023-33551
heap buffer overflow
erofsfsck_dirent_iter
fsck/main.c
remote attackers
arbitrary code
erofs filesystem image
software
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
Heap Buffer Overflow in the erofsfsck_dirent_iter function in fsck/main.c in erofs-utils v1.6 allows remote attackers to execute arbitrary code via a crafted erofs filesystem image.
| CPE | Name | Operator | Version |
|---|---|---|---|
| erofs-utils.git | eq | 1.6 | |
| erofs-utils.git | eq | 1.1 | |
| erofs-utils.git | eq | 1.5 | |
| erofs-utils.git | eq | 1.2.1 | |
| erofs-utils.git | eq | 1.2 | |
| erofs-utils.git | eq | 1.3 | |
| erofs-utils.git | eq | 1.0 | |
| erofs-utils.git | eq | 1.4 |
Related
prion
prion
Heap overflow
2023-06-01 15:15:00
cvelist
cvelist
CVE-2023-33551
2023-06-01 00:00:00
nvd
nvd
CVE-2023-33551
2023-06-01 15:15:09
cve
cve
CVE-2023-33551
2023-06-01 15:15:09
veracode
veracode
Out-of-bounds Write
2023-06-18 03:34:23
debiancve
debiancve
CVE-2023-33551
2023-06-01 15:15:09
ubuntucve
ubuntucve
CVE-2023-33551
2023-06-01 00:00:00
nessus
nessus
Fedora 39 : erofs-utils (2023-aadd651a30)
2023-11-07 00:00:00
Fedora 38 : erofs-utils (2023-f838326992)
2023-09-07 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: erofs-utils-1.6-3.fc39
2023-09-15 19:04:12
[SECURITY] Fedora 38 Update: erofs-utils-1.6-3.fc38
2023-09-07 01:29:57
mageia
mageia
Updated erofs-utils packages fix security vulnerabilities
2024-06-28 05:41:31
openvas
openvas
Fedora: Security Advisory for erofs-utils (FEDORA-2023-aadd651a30)
2023-09-16 00:00:00
Mageia: Security Advisory (MGASA-2024-0241)
2024-06-28 00:00:00
Fedora: Security Advisory for erofs-utils (FEDORA-2023-f838326992)
2023-09-09 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.1%
Related for OSV:CVE-2023-33551