VYPR
Medium severity6.5NVD Advisory· Published Sep 1, 2018· Updated Jun 17, 2026

CVE-2018-15161

CVE-2018-15161

Description

The libesedb_key_append_data function in libesedb_key.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Libyal/Libesedbinferred2 versions
    <= 2018-04-01+ 1 more
    • (no CPE)range: <= 2018-04-01
    • (no CPE)range: <=2018-04-01

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.