Sane-Project: >> Sane Backends >> 1.2.1 Security Vulnerabilities
Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-03-27
An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the sanei_configure_attach() function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file.
CVSS Score
7.3
EPSS Score
0.0
Published
2024-03-27