CVE-2015-20111 in Bitcoin信息

摘要

由 MITRE • 2024-11-18

miniupnp before 4c90b87, as used in Bitcoin Core before 0.12 and other products, lacks checks for snprintf return values, leading to a buffer overflow and significant data leak, a different vulnerability than CVE-2019-12107. In Bitcoin Core before 0.12, remote code execution was possible in conjunction with CVE-2015-6031 exploitation.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

负责

MITRE

预定

2024-11-18

披露

2024-11-18

管理

已接受

条目

VDB-284916

CPE

准备好

CWE

CWE-252 (已确认)

CVSS

6.3 (VulDB)

EPSS

0.03991

KEV

否

活动

非常低

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-20111
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-20111
CVE Details	https://www.cvedetails.com/cve/CVE-2015-20111/

◂ 上一步一览下一步 ▸

Do you know our Splunk app?

Download it now for free!