CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27799

ean_leading_zeroes in backend/upcean.c in Zint Barcode Generator 2.9.1 has a stack-based buffer overflow that is reachable from the C API through an application that includes the Zint Barcode Generator library code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://zint.org.uk/Manual.aspx?type=p&page=3
http://zint.org.uk/Manual.aspx?type=p&page=4
http://zint.org.uk/Manual.aspx?type=p&page=5
https://sourceforge.net/p/zint/code/ci/7f8c8114f31c09a986597e0ba63a49f96150368a/
https://sourceforge.net/p/zint/tickets/218/
http://zint.org.uk/Manual.aspx?type=p&page=3
http://zint.org.uk/Manual.aspx?type=p&page=4
http://zint.org.uk/Manual.aspx?type=p&page=5
https://sourceforge.net/p/zint/code/ci/7f8c8114f31c09a986597e0ba63a49f96150368a/
https://sourceforge.net/p/zint/tickets/218/

Products affected by CVE-2021-27799

Zint » Barcode Generator » Version: 2.9.1

cpe:2.3:a:zint:barcode_generator:2.9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27799

Products

Pricing

Contact Us