Lucene search

K
redosRedosROS-20211223-07
HistoryDec 23, 2021 - 12:00 a.m.

ROS-20211223-07

2021-12-2300:00:00
redos.red-soft.ru
47

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.8%

BusyBox command line utility suite vulnerability is related to reading beyond memory boundaries. Exploitation
The vulnerability could allow an attacker acting remotely to cause a read outside bounds error
and read the contents of memory on the system or perform a denial of service (DoS) attack.

A vulnerability in the BusyBox command line utility suite is related to memory usage after release.
Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code on a
target system.

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64busybox<=Β 1.34.1-1UNKNOWN

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.8%