Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:42969
HistoryAug 25, 2023 - 9:42 p.m.

Memory Leaks

2023-08-2521:42:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
binutils
memory leaks
make_tempdir
make_tempname
bucomm.c
denial of service
local attack

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0

Percentile

12.7%

binutils is vulnerable to Memory Leaks. The vulnerability occurs in make_tempdir and make_tempname within bucomm.c, which allows a malicious attacker to cause a denial of service locally.

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0

Percentile

12.7%