Lucene search
Veracode Vulnerability DatabaseVERACODE:33484HistoryDec 29, 2021 - 4:41 p.m.
Remote Code Execution (RCE)
2021-12-2916:41:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.01 Low
EPSS
Percentile
83.5%
gerbv:sid is vulnerable to remote code execution. An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling functionality of Gerbv 2.7.0 and dev (commit b5f1eacd) and the forked version of Gerbv (commit 71493260). A specially-crafted gerber file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
Related
nvd
nvd
CVE-2021-40394
2021-12-22 19:15:11
prion
prion
Cross site scripting
2021-12-22 19:15:00
cve
cve
CVE-2021-40394
2021-12-22 19:15:11
talos
talos
ubuntucve
ubuntucve
CVE-2021-40394
2021-12-22 00:00:00
osv
osv
CVE-2021-40394
2021-12-22 19:15:11
gerbv - security update
2023-09-30 00:00:00
gerbv - security update
2022-12-27 00:00:00
cvelist
cvelist
CVE-2021-40394
2021-12-22 00:00:00
debiancve
debiancve
CVE-2021-40394
2021-12-22 19:15:11
nessus
nessus
Debian DLA-3593-1 : gerbv - LTS security update
2023-09-30 00:00:00
Debian DSA-5306-1 : gerbv - security update
2022-12-27 00:00:00
debian
debian
[SECURITY] [DLA 3593-1] gerbv security update
2023-09-30 14:17:01
[SECURITY] [DSA 5306-1] gerbv security update
2022-12-27 14:22:42
openvas
openvas
Debian: Security Advisory (DLA-3593-1)
2023-10-02 00:00:00
Debian: Security Advisory (DSA-5306-1)
2022-12-28 00:00:00
Mageia: Security Advisory (MGASA-2022-0260)
2022-07-14 00:00:00
mageia
mageia
Updated gerbv packages fix security vulnerability
2022-07-13 23:44:07