Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-36139
HistoryAug 16, 2022 - 12:00 a.m.

CVE-2022-36139

2022-08-1600:00:00
ubuntu.com
ubuntu.com
12
swfmill
heap-buffer overflow
vulnerability
swf::writer::writebyte
unix

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

34.8%

SWFMill commit 53d7690 was discovered to contain a heap-buffer overflow via
SWF::Writer::writeByte(unsigned char).

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

34.8%

Related for UB:CVE-2022-36139