admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2022-08-08 21:01:01 +00:00
parent 681ad26205
commit 69f1676221
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
2022/34xxx/CVE-2022-34970.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "Crow before v1.0+4 was discovered to contain a buffer overflow via the function qs_parse at query_string.h. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input."
"value": "Crow before 1.0+4 has a heap-based buffer overflow via the function qs_parse in query_string.h. On successful exploitation this vulnerability allows attackers to remotely execute arbitrary code in the context of the vulnerable service."
}
]
},
@ -61,6 +61,16 @@
"url": "https://github.com/CrowCpp/Crow/releases/tag/v1.0%2B4",
"refsource": "MISC",
"name": "https://github.com/CrowCpp/Crow/releases/tag/v1.0%2B4"
},
{
"refsource": "MISC",
"name": "https://github.com/0xhebi/CVE-2022-34970/blob/master/report.md",
"url": "https://github.com/0xhebi/CVE-2022-34970/blob/master/report.md"
},
{
"refsource": "MISC",
"name": "https://cwe.mitre.org/data/definitions/193.html",
"url": "https://cwe.mitre.org/data/definitions/193.html"
}
]
}