CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
91.2%
A vulnerability in the SHA-3 cryptographic hash function of the eXtended Keccak Code Package (XKCP) software package
is related to errors in block processing of input data and type conversion. Exploitation of the vulnerability
could allow an attacker acting remotely to execute arbitrary code during the hash calculation process
using specially generated data