Lucene search

K
redosRedosROS-20240815-07
HistoryAug 15, 2024 - 12:00 a.m.

ROS-20240815-07

2024-08-1500:00:00
redos.red-soft.ru
57
vulnerability
gnu c library
nscd nameserver
buffer overflow
misuse of assert()
denial of service
confidentiality
integrity
availability
remote exploitation
null pointer dereferencing
unix

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

AI Score

7

Confidence

Low

A vulnerability in the GNU C Library’s nscd nameserver caching daemon is related to the
returning a pointer outside the expected range. Exploitation of the vulnerability could allow
an attacker to cause a denial of service

A vulnerability in the GNU C Library nscd nameserver caching daemon is related to
stack buffer overflow. Exploitation of the vulnerability could allow an attacker acting remotely,
Affect the confidentiality, integrity, and availability of protected information

A vulnerability in the GNU C Library’s nscd nameserver caching daemon is related to a flaw in the use of the assert() function.
in the use of assert(). Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

A vulnerability in the GNU C Library nscd nameserver caching daemon is related to a flaw in the use of the assert() function.
null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service.
remotely to cause a denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64glibc< 2.28-11UNKNOWN

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

AI Score

7

Confidence

Low