Nasa: >> Cfitsio >> 3.43 Security Vulnerabilities
In the ffghbn function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
CVSS Score
8.8
EPSS Score
0.014
Published
2018-04-16
In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
CVSS Score
8.8
EPSS Score
0.014
Published
2018-04-16