7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.6%
A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun.
bugzilla.redhat.com/show_bug.cgi?id=2179864
nvd.nist.gov/vuln/detail/CVE-2022-4899
www.cve.org/CVERecord?id=CVE-2022-4899