CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-28874
https://notcve.org/view.php?id=CVE-2021-28874
SerenityOS fixed as of c9f25bca048443e317f1994ba9b106f2386688c3 contains a buffer overflow vulnerability in LibTextCode through opening a crafted file. SerenityOS corregido a partir de c9f25bca048443e317f1994ba9b106f2386688c3, contiene una vulnerabilidad de desbordamiento del búfer en LibTextCode al abrir un archivo diseñado • https://github.com/SerenityOS/serenity/commit/c9f25bca048443e317f1994ba9b106f2386688c3 https://github.com/SerenityOS/serenity/issues/5769 https://github.com/SerenityOS/serenity/pull/5802 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-27343
https://notcve.org/view.php?id=CVE-2021-27343
SerenityOS Unspecified is affected by: Buffer Overflow. The impact is: obtain sensitive information (context-dependent). The component is: /Userland/Libraries/LibCrypto/ASN1/DER.h Crypto::der_decode_sequence() function. The attack vector is: Parsing RSA Key ASN.1. SerenityOS Unspecified está afectado por: un Desbordamiento del Búfer. • https://github.com/SerenityOS/serenity/commit/48fbf6a88d4822a1e5470cf08f29464511bd72c1 https://github.com/SerenityOS/serenity/issues/5317 https://github.com/SerenityOS/serenity/pull/5344 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2019-20172
https://notcve.org/view.php?id=CVE-2019-20172
Kernel/VM/MemoryManager.cpp in SerenityOS before 2019-12-30 does not reject syscalls with pointers into the kernel-only virtual address space, which allows local users to gain privileges by overwriting a return address that was found on the kernel stack. El archivo Kernel/VM/MemoryManager.cpp en SerenityOS antes de 30-12-2019 no rechaza las llamadas al sistema con punteros en el espacio de direcciones virtuales solo del kernel, lo que permite a usuarios locales alcanzar privilegios sobrescribiendo una dirección de retorno que fue encontrada en la pila del kernel. • https://github.com/Fire30/CTF-WRITEUPS/tree/master/36c3_ctf/wisdom https://github.com/SerenityOS/serenity/commit/0fc24fe2564736689859e7edfa177a86dac36bf9 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •