CVE-2015-20111 in Bitcoininformation

Résumé

par MITRE • 18/11/2024

miniupnp before 4c90b87, as used in Bitcoin Core before 0.12 and other products, lacks checks for snprintf return values, leading to a buffer overflow and significant data leak, a different vulnerability than CVE-2019-12107. In Bitcoin Core before 0.12, remote code execution was possible in conjunction with CVE-2015-6031 exploitation.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

MITRE

Réserver

18/11/2024

Divulgation

18/11/2024

Modérer

accepté

Entrée

VDB-284916

CPE

prêt

CWE

CWE-252 (confirmé)

CVSS

6.3 (VulDB)

EPSS

0.03991

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-20111
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-20111
CVE Details	https://www.cvedetails.com/cve/CVE-2015-20111/

◂ Précédent Aperçu Suivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!