Vulnerability Details CVE-2021-26635
In the code that verifies the file size in the ark library, it is possible to manipulate the offset read from the target file due to the wrong use of the data type. An attacker could use this vulnerability to cause a stack buffer overflow and as a result, perform an attack such as remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.036
EPSS Ranking 87.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2021-26635
-
cpe:2.3:a:bandisoft:ark_library:2.0
-
cpe:2.3:a:bandisoft:ark_library:3.0.0.1
-
cpe:2.3:a:bandisoft:ark_library:3.1.0.2
-
cpe:2.3:a:bandisoft:ark_library:3.2.0.3
-
cpe:2.3:a:bandisoft:ark_library:3.2.1.4
-
cpe:2.3:a:bandisoft:ark_library:3.2.2.5
-
cpe:2.3:a:bandisoft:ark_library:4.0.0.1
-
cpe:2.3:a:bandisoft:ark_library:4.1.0.2
-
cpe:2.3:a:bandisoft:ark_library:4.1.1.3
-
cpe:2.3:a:bandisoft:ark_library:4.1.2.4
-
cpe:2.3:a:bandisoft:ark_library:4.1.3.5
-
cpe:2.3:a:bandisoft:ark_library:4.2.0.6
-
cpe:2.3:a:bandisoft:ark_library:4.2.1.7
-
cpe:2.3:a:bandisoft:ark_library:4.3.0.9
-
cpe:2.3:a:bandisoft:ark_library:4.3.1.10
-
cpe:2.3:a:bandisoft:ark_library:4.4.0.11
-
cpe:2.3:a:bandisoft:ark_library:4.5.0.13
-
cpe:2.3:a:bandisoft:ark_library:4.5.1.14
-
cpe:2.3:a:bandisoft:ark_library:4.5.2.15
-
cpe:2.3:a:bandisoft:ark_library:4.5.3.16
-
cpe:2.3:a:bandisoft:ark_library:4.6.0.17
-
cpe:2.3:a:bandisoft:ark_library:4.6.1.18
-
cpe:2.3:a:bandisoft:ark_library:5.0.0.1
-
cpe:2.3:a:bandisoft:ark_library:5.0.1.2
-
cpe:2.3:a:bandisoft:ark_library:5.0.2.3
-
cpe:2.3:a:bandisoft:ark_library:5.0.5.6
-
cpe:2.3:a:bandisoft:ark_library:5.0.6.7
-
cpe:2.3:a:bandisoft:ark_library:6.0.0.1
-
cpe:2.3:a:bandisoft:ark_library:6.0.1.2
-
cpe:2.3:a:bandisoft:ark_library:6.14.0.1
-
cpe:2.3:a:bandisoft:ark_library:6.14.1.1
-
cpe:2.3:a:bandisoft:ark_library:6.14.2.1
-
cpe:2.3:a:bandisoft:ark_library:6.18.0.2
-
cpe:2.3:a:bandisoft:ark_library:6.20.0.2
-
cpe:2.3:a:bandisoft:ark_library:6.22.0.2
-
cpe:2.3:a:bandisoft:ark_library:6.22.0.3
-
cpe:2.3:a:bandisoft:ark_library:6.26.0.1
-
cpe:2.3:a:bandisoft:ark_library:6.8.0.1
-
cpe:2.3:a:bandisoft:ark_library:6.8.0.2
-
cpe:2.3:a:bandisoft:ark_library:7.0
-
cpe:2.3:a:bandisoft:ark_library:7.10.0.1
-
cpe:2.3:a:bandisoft:ark_library:7.13.0.2
-
cpe:2.3:a:bandisoft:ark_library:7.13.0.3
-
cpe:2.3:a:bandisoft:ark_library:7.16.0.1
-
cpe:2.3:a:bandisoft:ark_library:7.16.0.2
-
cpe:2.3:a:bandisoft:ark_library:7.7.0.1
-
cpe:2.3:a:bandisoft:ark_library:7.9.0.1