CVSS: 9.8EPSS: 31%CPEs: 1EXPL: 0CVE-2019-1010060
https://notcve.org/view.php?id=CVE-2019-1010060
16 Jul 2019 — NASA CFITSIO prior to 3.43 is affected by: Buffer Overflow. The impact is: arbitrary code execution. The component is: over 40 source code files were changed. The attack vector is: remote unauthenticated attacker. The fixed version is: 3.43. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892458 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-3847 – Gentoo Linux Security Advisory 202101-24
https://notcve.org/view.php?id=CVE-2018-3847
01 Aug 2018 — Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution. Múltiples vulnerabilidades explotables de desbordamiento de búfer en la funcionalidad de análisis de imágenes de la biblioteca CFITSIO en su versión 3.42. Las imáge... • https://security.gentoo.org/glsa/202101-24 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 1CVE-2018-3848 – Gentoo Linux Security Advisory 202101-24
https://notcve.org/view.php?id=CVE-2018-3848
16 Apr 2018 — In the ffghbn function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution. En la función ffghbn en NASA CFITSIO 3.42, las imágenes especialmente manipuladas analizadas mediante la biblioteca pueden provocar un desbordamiento de búfer basado en pila que sobrescriba datos arbitrarios. Un atacante puede enviar una imagen FI... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K46I2MFPCEOGC5LLDXZSWPB3EBPON3KA • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 1CVE-2018-3849 – Gentoo Linux Security Advisory 202101-24
https://notcve.org/view.php?id=CVE-2018-3849
16 Apr 2018 — In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution. En la función ffghtb en NASA CFITSIO 3.42, las imágenes especialmente manipuladas analizadas mediante la biblioteca pueden provocar un desbordamiento de búfer basado en pila que sobrescriba datos arbitrarios. Un atacante puede enviar una imagen FI... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K46I2MFPCEOGC5LLDXZSWPB3EBPON3KA • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 1CVE-2018-3846 – Gentoo Linux Security Advisory 202101-24
https://notcve.org/view.php?id=CVE-2018-3846
16 Apr 2018 — In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution. En las funciones ffgphd y ffgtkn en NASA CFITSIO 3.42, las imágenes especialmente manipuladas analizadas mediante la biblioteca pueden provocar un desbordamiento de búfer basado en pila que sobrescriba datos arbitrarios. Un atacante pu... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K46I2MFPCEOGC5LLDXZSWPB3EBPON3KA • CWE-787: Out-of-bounds Write •