VYPR

Avian

by ReadyTalk

CVEs (3)

  • CVE-2020-28371CriNov 9, 2020
    risk 0.57cvss 9.8epss 0.02

    An issue was discovered in ReadyTalk Avian 1.2.0 before 2020-10-27. The FileOutputStream.write() method in FileOutputStream.java has a boundary check to prevent out-of-bounds memory read/write operations. However, an integer overflow leads to bypassing this check and achieving…

  • CVE-2020-17360HigAug 12, 2020
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in ReadyTalk Avian 1.2.0. The vm::arrayCopy method defined in classpath-common.h contains multiple boundary checks that are performed to prevent out-of-bounds memory read/write. However, two of these boundary checks contain an integer overflow that leads…

  • CVE-2020-17361MedAug 12, 2020
    risk 0.36cvss 5.5epss 0.01

    An issue was discovered in ReadyTalk Avian 1.2.0. The vm::arrayCopy method defined in classpath-common.h returns silently when a negative length is provided (instead of throwing an exception). This could result in data being lost during the copy, with varying consequences…