Vulnerability Details CVE-2018-25033
ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_connects_remove_1 (called from stl_remove_degenerate) in connect.c in libadmesh.a.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.8%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 5.8
References
Products affected by CVE-2018-25033
-
cpe:2.3:a:admesh_project:admesh:0.95
-
cpe:2.3:a:admesh_project:admesh:0.97.0
-
cpe:2.3:a:admesh_project:admesh:0.97.1
-
cpe:2.3:a:admesh_project:admesh:0.97.2
-
cpe:2.3:a:admesh_project:admesh:0.97.3
-
cpe:2.3:a:admesh_project:admesh:0.97.4
-
cpe:2.3:a:admesh_project:admesh:0.97.5
-
cpe:2.3:a:admesh_project:admesh:0.98.0
-
cpe:2.3:a:admesh_project:admesh:0.98.1
-
cpe:2.3:a:admesh_project:admesh:0.98.2
-
cpe:2.3:a:admesh_project:admesh:0.98.3
-
cpe:2.3:a:admesh_project:admesh:0.98.4
-
cpe:2.3:o:debian:debian_linux:9.0