CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20002

The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to a denial of service (memory consumption), as demonstrated by nm.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.7%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

Products affected by CVE-2018-20002

F5 » Traffix Signaling Delivery Controller » Version: 4.4.0

cpe:2.3:a:f5:traffix_signaling_delivery_controller:4.4.0
F5 » Traffix Signaling Delivery Controller » Version: 5.0.0

cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.0.0
F5 » Traffix Signaling Delivery Controller » Version: 5.1.0

cpe:2.3:a:f5:traffix_signaling_delivery_controller:5.1.0
Gnu » Binutils » Version: 2.31

cpe:2.3:a:gnu:binutils:2.31
Netapp » Vasa Provider » Version: Any

cpe:2.3:a:netapp:vasa_provider:*
Netapp » Cluster Data Ontap » Version: N/A

cpe:2.3:o:netapp:cluster_data_ontap:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20002

Products

Pricing

Contact Us