SecBoard
Zurück zur CVE-Übersicht

CVE-2024-31636

LOW(3.9)

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Risk Signal Score10/100 — NIEDRIG

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

3.9

Technische Schwere

Beschreibung

An issue in LIEF v.0.14.1 allows a local attacker to obtain sensitive information via the name parameter of the machd_reader.c component.

GitHub Advisories

GHSA-377p-g8gr-5wpgLOW

LIEF obtain sensitive information via the name parameter

pip/lief0.15.0
GitHub Advisory

Referenzen