VYPR
Unrated severityNVD Advisory· Published Aug 19, 2021· Updated Aug 4, 2024

CVE-2020-18897

CVE-2020-18897

Description

An use-after-free vulnerability in the libpff_item_tree_create_node function of libyal Libpff before 20180623 allows attackers to cause a denial of service (DOS) or execute arbitrary code via a crafted pff file.

Affected products

2
  • libyal/Libpffdescription
  • Libyal/Libpffllm-fuzzy
    Range: < 20180623

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.

CVE-2020-18897 · VYPR