0.004 Low
EPSS
Percentile
73.6%
mruby through 2.1.2-rc has a heap-based buffer overflow in the mrb_yield_with_class function in vm.c because of incorrect VM stack handling. It can be triggered via the stack_copy function.
github.com/mruby/mruby/commit/6334949ba69363cb909a57d6871895bd6d98bb6b
github.com/mruby/mruby/issues/5042
launchpad.net/bugs/cve/CVE-2020-15866
nvd.nist.gov/vuln/detail/CVE-2020-15866
security-tracker.debian.org/tracker/CVE-2020-15866
www.cve.org/CVERecord?id=CVE-2020-15866