Unrated severityNVD Advisory· Published Aug 20, 2019· Updated Aug 4, 2024

CVE-2019-5039

Description

An exploitable command execution vulnerability exists in the ASN1 certificate writing functionality of Openweave-core version 4.0.2. A specially crafted weave certificate can trigger a heap-based buffer overflow, resulting in code execution. An attacker can craft a weave certificate to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Openweave/Openweave-coredescription
Openweave-core/Openweave-corellm-create
Range: = 4.0.2

Patches

Vulnerability mechanics

References

talosintelligence.com/vulnerability_reports/TALOS-2019-0802mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000