CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-27819

SWHKD 1.1.5 allows unsafe parsing via the -c option. An information leak might occur but there is a simple denial of service (memory exhaustion) upon an attempt to parse a large or infinite file (such as a block or character device).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.7%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 4.0

References

http://www.openwall.com/lists/oss-security/2022/04/14/1
https://github.com/waycrate/swhkd/commit/b4e6dc76f4845ab03104187a42ac6d1bbc1e0021
https://github.com/waycrate/swhkd/releases
http://www.openwall.com/lists/oss-security/2022/04/14/1
https://github.com/waycrate/swhkd/commit/b4e6dc76f4845ab03104187a42ac6d1bbc1e0021
https://github.com/waycrate/swhkd/releases

Products affected by CVE-2022-27819

Waycrate » Swhkd » Version: 1.1.5

cpe:2.3:a:waycrate:swhkd:1.1.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-27819

Products

Pricing

Contact Us