Lucene search
K

5 matches found

UbuntuCve
UbuntuCve
added 2026/04/20 12:0 a.m.7 views

CVE-2026-40489

editorconfig-core-c is an EditorConfig core library for use by plugins supporting EditorConfig parsing. Versions up to and including 0.12.10 have a stack-based buffer overflow in ecglob that allows an attacker to crash any application using libeditorconfig by providing a specially crafted directo...

8.6CVSS6AI score0.00151EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/18 12:0 a.m.9 views

EditorConfig 安全漏洞

EditorConfig is an open-source application developed by EditorConfig. It allows for easy maintenance of the correct coding style when switching between different text editors and different projects. EditorConfig versions prior to 0.12.10 have security vulnerabilities; these vulnerabilities stem...

8.6CVSS6AI score0.00151EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.6 views

The vulnerability of the ec_glob() function in the EditorConfig code library allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ecglob function in the EditorConfig code library is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrity, and even cause service failures...

7.8CVSS7.6AI score0.00965EPSS
Exploits1References7Affected Software3
OSV
OSV
added 2023/02/01 12:15 a.m.21 views

CVE-2023-0341

A stack buffer overflow exists in the ecglob function of editorconfig-core-c before v0.12.6 which allowed an attacker to arbitrarily write to the stack and possibly allows remote code execution. editorconfig-core-c v0.12.6 resolved this vulnerability by bound checking all write operations over th...

7.8CVSS8.1AI score0.00965EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2023/02/01 12:15 a.m.24 views

CVE-2023-0341

A stack buffer overflow exists in the ecglob function of editorconfig-core-c before v0.12.6 which allowed an attacker to arbitrarily write to the stack and possibly allows remote code execution. editorconfig-core-c v0.12.6 resolved this vulnerability by bound checking all write operations over th...

7.8CVSS8.2AI score0.00965EPSS
Exploits1
Rows per page
Query Builder