Vulnerability Details CVE-2018-20453
The getlong function in numutils.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.5%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
Products affected by CVE-2018-20453
-
cpe:2.3:a:libdoc_project:libdoc:2015-10-24
-
cpe:2.3:a:libdoc_project:libdoc:2015-10-28
-
cpe:2.3:a:libdoc_project:libdoc:2015-12-29
-
cpe:2.3:a:libdoc_project:libdoc:2017-10-23
-
cpe:2.3:a:libdoc_project:libdoc:2019-01-28
-
cpe:2.3:a:libdoc_project:libdoc:2019-01-31
-
cpe:2.3:a:libdoc_project:libdoc:2019-02-04
-
cpe:2.3:a:libdoc_project:libdoc:2019-05-30
-
cpe:2.3:a:libdoc_project:libdoc:2019-05-31
-
cpe:2.3:a:libdoc_project:libdoc:2019-06-04
-
cpe:2.3:a:libdoc_project:libdoc:2019-06-24