Lookup for vulnerabilities affecting packages.
| Vulnerability_id | VCID-hyw1-xf29-dqg7 |
|---|
| Summary | Out-of-bounds Read
In libssh2 such as CVE-2019-3855. |
|---|
| Aliases |
|
|---|
| Fixed_packages |
|
|---|
| Affected_packages |
|
|---|
| References |
|
|---|
| Weaknesses |
| 0 |
| cwe_id |
1035 |
| name |
OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities |
| description |
Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017. |
|
| 1 |
| cwe_id |
125 |
| name |
Out-of-bounds Read |
| description |
The product reads data past the end, or before the beginning, of the intended buffer. |
|
| 2 |
| cwe_id |
937 |
| name |
OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities |
| description |
Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013. |
|
| 3 |
| cwe_id |
190 |
| name |
Integer Overflow or Wraparound |
| description |
The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control. |
|
| 4 |
| cwe_id |
787 |
| name |
Out-of-bounds Write |
| description |
The product writes data past the end, or before the beginning, of the intended buffer. |
|
|
|---|
| Exploits |
|
|---|
| Severity_range_score | 6.8 - 6.8 |
|---|
| Exploitability | null |
|---|
| Weighted_severity | null |
|---|
| Risk_score | null |
|---|
| Resource_url | http://public2.vulnerablecode.io/vulnerabilities/VCID-hyw1-xf29-dqg7 |
|---|