CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code (remote). The component is: read_2004_section_header ../../src/decode.c:2580.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

http://gnu.com
https://github.com/LibreDWG/libredwg/issues/188#issuecomment-574493607
http://gnu.com
https://github.com/LibreDWG/libredwg/issues/188#issuecomment-574493607

Products affected by CVE-2020-21844

Gnu » Libredwg » Version: 0.10

cpe:2.3:a:gnu:libredwg:0.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-21844

Products

Pricing

Contact Us