libsimba
CVEs (14)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-27572 | Hig | 0.53 | 8.1 | 0.01 | Apr 11, 2022 | Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers. | ||
| CVE-2022-27571 | Hig | 0.53 | 8.1 | 0.01 | Apr 11, 2022 | Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker. | ||
| CVE-2022-27570 | Hig | 0.53 | 8.1 | 0.01 | Apr 11, 2022 | Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker. | ||
| CVE-2022-27569 | Hig | 0.53 | 8.1 | 0.01 | Apr 11, 2022 | Heap-based buffer overflow vulnerability in parser_infe function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker. | ||
| CVE-2022-27568 | Hig | 0.53 | 8.1 | 0.01 | Apr 11, 2022 | Heap-based buffer overflow vulnerability in parser_iloc function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker. | ||
| CVE-2022-26098 | Hig | 0.53 | 8.1 | 0.01 | Apr 11, 2022 | Heap-based buffer overflow vulnerability in sheifd_create function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers. | ||
| CVE-2022-27567 | Med | 0.38 | 5.9 | 0.01 | Apr 11, 2022 | Null pointer dereference vulnerability in parser_hvcC function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attackers. | ||
| CVE-2022-26099 | Med | 0.38 | 5.9 | 0.01 | Apr 11, 2022 | Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers. | ||
| CVE-2022-26097 | Med | 0.38 | 5.9 | 0.01 | Apr 11, 2022 | Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker. | ||
| CVE-2022-26096 | Med | 0.38 | 5.9 | 0.01 | Apr 11, 2022 | Null pointer dereference vulnerability in parser_ispe function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker. | ||
| CVE-2022-26095 | Med | 0.38 | 5.9 | 0.01 | Apr 11, 2022 | Null pointer dereference vulnerability in parser_colr function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker. | ||
| CVE-2022-26093 | Med | 0.38 | 5.9 | 0.01 | Apr 11, 2022 | Null pointer dereference vulnerability in parser_irot function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker. | ||
| CVE-2022-27574 | Med | 0.29 | 4.4 | 0.00 | Apr 11, 2022 | Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attacker. | ||
| CVE-2022-27573 | Med | 0.29 | 4.4 | 0.00 | Apr 11, 2022 | Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attackers. |
- risk 0.53cvss 8.1epss 0.01
Heap-based buffer overflow vulnerability in parser_ipma function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.
- risk 0.53cvss 8.1epss 0.01
Heap-based buffer overflow vulnerability in sheifd_get_info_image function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
- risk 0.53cvss 8.1epss 0.01
Heap-based buffer overflow vulnerability in parser_single_iref function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
- risk 0.53cvss 8.1epss 0.01
Heap-based buffer overflow vulnerability in parser_infe function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
- risk 0.53cvss 8.1epss 0.01
Heap-based buffer overflow vulnerability in parser_iloc function in libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attacker.
- risk 0.53cvss 8.1epss 0.01
Heap-based buffer overflow vulnerability in sheifd_create function of libsimba library prior to SMR Apr-2022 Release 1 allows code execution by remote attackers.
- risk 0.38cvss 5.9epss 0.01
Null pointer dereference vulnerability in parser_hvcC function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attackers.
- risk 0.38cvss 5.9epss 0.01
Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers.
- risk 0.38cvss 5.9epss 0.01
Null pointer dereference vulnerability in parser_unknown_property function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
- risk 0.38cvss 5.9epss 0.01
Null pointer dereference vulnerability in parser_ispe function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
- risk 0.38cvss 5.9epss 0.01
Null pointer dereference vulnerability in parser_colr function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
- risk 0.38cvss 5.9epss 0.01
Null pointer dereference vulnerability in parser_irot function in libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by remote attacker.
- risk 0.29cvss 4.4epss 0.00
Improper input validation vulnerability in parser_iloc and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attacker.
- risk 0.29cvss 4.4epss 0.00
Improper input validation vulnerability in parser_infe and sheifd_find_itemIndexin fuctions of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds write by privileged attackers.