Lucene search

K

RedosROS-20240911-06

HistorySep 11, 2024 - 12:00 a.m.

ROS-20240911-06

2024-09-1100:00:00

redos.red-soft.ru

2

gcc

vulnerability

stack protection

data protection mechanism

remote attackers

confidentiality

integrity

availability

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

21.1%

A vulnerability in the stack protection feature of the GNU Compiler Collection (GCC) for different programming languages is due to a data protection mechanism violation.
Collection (GCC) is related to a breach of the data protection mechanism. Exploitation of the vulnerability could allow
an attacker acting remotely to affect the confidentiality, integrity, and availability of protected information.
protected information

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64cross-gcc-common< 11.5.0-1UNKNOWN

CVSS3

4.8

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

AI Score

6.5

Confidence

Low

EPSS

0.001

Percentile

21.1%

Related for ROS-20240911-06

openvas25 rosalinux1 cvelist1 amazon2 nessus29 osv4 prion1 cbl_mariner2 ubuntucve1 redhatcve1 oraclelinux3 cve1 alpinelinux1 debiancve1 veracode1 nvd1 cgr1 wolfi1 ibm3 oracle1 ics1