CVE-2023-25139

{"id": "CVE-2023-25139", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-02-03T06:15:09.523", "references": [{"url": "http://www.openwall.com/lists/oss-security/2023/02/10/1", "source": "cve@mitre.org"}, {"url": "https://security.netapp.com/advisory/ntap-20230302-0010/", "source": "cve@mitre.org"}, {"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=30068", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2023/02/10/1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://security.netapp.com/advisory/ntap-20230302-0010/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=30068", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "sprintf in the GNU C Library (glibc) 2.37 has a buffer overflow (out-of-bounds write) in some situations with a correct buffer size. This is unrelated to CWE-676. It may write beyond the bounds of the destination buffer when attempting to write a padded, thousands-separated string representation of a number, if the buffer is allocated the exact size required to represent that number as a string. For example, 1,234,567 (with padding to 13) overflows by two bytes."}, {"lang": "es", "value": "sprintf en la librer\u00eda GNU C (glibc) 2.37 tiene un desbordamiento del b\u00fafer (escritura fuera de los l\u00edmites) en algunas situaciones con un tama\u00f1o de b\u00fafer correcto. Esto no tiene relaci\u00f3n con CWE-676. Puede escribir m\u00e1s all\u00e1 de los l\u00edmites del b\u00fafer de destino cuando intenta escribir una representaci\u00f3n de cadena rellenada y separada por miles de un n\u00famero, si al b\u00fafer se le asigna el tama\u00f1o exacto requerido para representar ese n\u00famero como una cadena. Por ejemplo, 1.234.567 (con relleno de 13) se desborda en dos bytes."}], "lastModified": "2024-11-21T07:49:11.073", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnu:glibc:2.37:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC1ACC29-6D0B-4599-9591-6DE176404D6F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}