CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
9.0%
azure-c-shared-utility is vulnerable to Heap-based Buffer Overflow. The vulnerability is due to inadequate parameter checking mechanisms, which can be exploited through the buffer length parameter in the Azure C SDK, potentially leading to remote code execution.