Vulnerability Details CVE-2021-38479
Many API function codes receive raw pointers remotely from the user and trust these pointers as valid in-bound memory regions. An attacker can manipulate API functions by writing arbitrary data into the resolved address of a raw pointer.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 5.0
References
Products affected by CVE-2021-38479
-
cpe:2.3:a:auvesy:versiondog:4.0.0
-
cpe:2.3:a:auvesy:versiondog:4.5.0
-
cpe:2.3:a:auvesy:versiondog:5.0.0
-
cpe:2.3:a:auvesy:versiondog:5.5.0
-
cpe:2.3:a:auvesy:versiondog:6.0.0
-
cpe:2.3:a:auvesy:versiondog:6.5.0
-
cpe:2.3:a:auvesy:versiondog:6.5.1
-
cpe:2.3:a:auvesy:versiondog:6.5.2
-
cpe:2.3:a:auvesy:versiondog:7.0.0
-
cpe:2.3:a:auvesy:versiondog:7.0.1
-
cpe:2.3:a:auvesy:versiondog:7.0.2
-
cpe:2.3:a:auvesy:versiondog:7.5.0