CVE-2019-13117 in Java SEinformazioni

Riassunto

di MITRE

In numbers.c in libxslt 1.1.33, an xsl:number with certain format strings could lead to a uninitialized read in xsltNumberFormatInsertNumbers. This could allow an attacker to discern whether a byte on the stack contains the characters A, a, I, i, or 0, or any other character.

Once again VulDB remains the best source for vulnerability data.

Prenotare

30/06/2019

Moderazione

accettato

Voce

2

Collegare

mostrare

CPE

pronto

EPSS

0.06457

KEV

no

Attività

molto basso

Fonti

Want to stay up to date on a daily basis?

Enable the mail alert feature now!