PicoC
by PicoC
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-16277 | Hig | 0.51 | 7.8 | 0.01 | Sep 13, 2019 | PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c. | ||
| CVE-2022-44321 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the LexSkipComment function in lex.c when called from LexScanGetToken. | ||
| CVE-2022-44320 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceFP function in expression.c when called from ExpressionParseFunctionCall. | ||
| CVE-2022-44319 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall. | ||
| CVE-2022-44316 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the LexGetStringConstant function in lex.c when called from LexScanGetToken. | ||
| CVE-2022-44314 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrncpy function in cstdlib/string.c when called from ExpressionParseFunctionCall. | ||
| CVE-2022-44313 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceUnsignedInteger function in expression.c when called from ExpressionParseFunctionCall. | ||
| CVE-2022-44312 | Med | 0.36 | 5.5 | 0.00 | Nov 8, 2022 | PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceInteger function in expression.c when called from ExpressionInfixOperator. |
- risk 0.51cvss 7.8epss 0.01
PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the LexSkipComment function in lex.c when called from LexScanGetToken.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceFP function in expression.c when called from ExpressionParseFunctionCall.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the LexGetStringConstant function in lex.c when called from LexScanGetToken.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrncpy function in cstdlib/string.c when called from ExpressionParseFunctionCall.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceUnsignedInteger function in expression.c when called from ExpressionParseFunctionCall.
- risk 0.36cvss 5.5epss 0.00
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceInteger function in expression.c when called from ExpressionInfixOperator.