9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.6%
A vulnerability in the glibc system library is related to a boundary error in the clnt_create() function in module
sunrpc module. Exploitation of the vulnerability could allow an attacker acting remotely to pass specially crafted input data to an application using a vulnerable version of the library.
specially crafted input data to an application that uses a vulnerable version of the library, cause memory corruption, and execute arbitrary code in the
memory corruption and execute arbitrary code on the target system
A vulnerability in the glibc system library is related to a random error in the glibc getcwd() function. Exploitation
The vulnerability could allow an attacker acting remotely to pass specially crafted input data to an application using a version of the vulnerability.
data to an application using a version of the vulnerable library, trigger a one-by-one error, and execute the
arbitrary code on the target system
The glibc system library vulnerability is related to a boundary error in svcunix_create() in the sunrpc ib module
glibc. Exploitation of the vulnerability could allow an attacker acting remotely to pass specially
specially crafted input data to an application using a vulnerable version of the library, cause memory corruption, and execute arbitrary code in the
memory corruption and execute arbitrary code on the target system
The glibc system library vulnerability involves a memory leak in the glibc realpath() function. Exploitation
vulnerability could allow a remote attacker to force an application to leak memory and execute a denial-of-service attack.
memory leak and perform a denial of service attack or gain access to sensitive information
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.6%