CVE-2023-46052
HIGH7.1EPSS 0.06%發布日:2024/3/27修改日:2026/4/28
也稱為:DEBIAN-CVE-2023-46052
描述
Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.
受影響套件(1)
- Debian/sane-backendsfrom 0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.1 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H |