{ "id": "CVE-2017-14727", "sourceIdentifier": "cve@mitre.org", "published": "2017-09-23T20:29:00.577", "lastModified": "2025-04-20T01:37:25.860", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [ { "lang": "en", "value": "logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized." }, { "lang": "es", "value": "logger.c en el plugin logger en WeeChat en versiones anteriores a la 1.9.1 permite un cierre inesperado mediante especificadores strftime de fecha y hora debido a que no se inicializa un buffer." } ], "metrics": { "cvssMetricV30": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 3.6 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "baseScore": 5.0, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "PARTIAL" }, "baseSeverity": "MEDIUM", "exploitabilityScore": 10.0, "impactScore": 2.9, "acInsufInfo": true, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-119" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:weechat:logger:-:*:*:*:*:*:*:*", "matchCriteriaId": "FEB6F39E-691E-41E2-A689-E1759146B2E1" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "E127A69E-06CF-4465-AE73-4DEDA095C9F8" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "E288417C-C213-4876-A06B-0D51C06821BD" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "287B7B4A-E07C-4B29-872C-BA3D4148A5A1" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "B14A2EF7-4306-4A21-A166-00DB1265D4B4" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "F2DD540D-78EF-4A9A-A608-5B3FD1DDD316" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.7:*:*:*:*:*:*:*", "matchCriteriaId": "8BC2EB17-C1D8-48CB-853D-BBD513C129D1" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.8:*:*:*:*:*:*:*", "matchCriteriaId": "178CEFDB-BF33-45AC-95FB-2860994B791C" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.9:*:*:*:*:*:*:*", "matchCriteriaId": "A1E9E6AD-3722-41A5-98EB-80371579D0B3" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "BA029516-E0C1-47EB-B5FA-331F07891ED2" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.3.9.2:*:*:*:*:*:*:*", "matchCriteriaId": "B4A82F71-260B-42CF-9875-D105FD729733" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "60310327-04C3-4949-A5DF-F4D65EC94B2A" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "574F7EBF-3999-414A-80F1-B0C053483787" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "D688D18E-34F7-4C30-A415-C10A8DC1B956" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:0.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "75A08B88-16E2-41CE-9C22-D47CC5C73567" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "DDC47486-0796-4AD7-AE3F-D6186BD6099B" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "262FD0BB-06A3-4806-AC07-951DEE3FD771" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "28072989-2E65-4FB0-85EC-1E3FB0BCE0C2" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "FD7B92C8-D89D-4EB3-9A12-2378EFDD792B" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "8A997F14-D97B-49FB-8EBA-00CCA6138975" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "0813D0F6-34E5-4D23-A260-14974FA687B6" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "2BCFD842-0076-42BC-B927-23F7641DCA8B" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "58744DB9-6D89-4E96-B204-A438235481B7" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "E362060F-8B23-4344-8875-8ADB4810A1EA" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "C0760C38-1CB4-4E3F-ABD2-1B5E340C1D57" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "009C3FBF-CC75-42F0-8F87-E6985B00962E" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA25E2F9-A390-4230-974F-71CE75A2D972" }, { "vulnerable": false, "criteria": "cpe:2.3:a:weechat:weechat:1.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "BE0095B6-9111-4EC1-A319-CFE19415F4C8" } ] } ] } ], "references": [ { "url": "http://www.securityfocus.com/bid/101003", "source": "cve@mitre.org", "tags": [ "Third Party Advisory", "VDB Entry" ] }, { "url": "https://github.com/weechat/weechat/commit/f105c6f0b56fb5687b2d2aedf37cb1d1b434d556", "source": "cve@mitre.org", "tags": [ "Patch", "Third Party Advisory" ] }, { "url": "https://weechat.org/download/security/", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] }, { "url": "https://weechat.org/news/98/20170923-Version-1.9.1-security-release/", "source": "cve@mitre.org", "tags": [ "Release Notes", "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/bid/101003", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory", "VDB Entry" ] }, { "url": "https://github.com/weechat/weechat/commit/f105c6f0b56fb5687b2d2aedf37cb1d1b434d556", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Patch", "Third Party Advisory" ] }, { "url": "https://weechat.org/download/security/", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "https://weechat.org/news/98/20170923-Version-1.9.1-security-release/", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Release Notes", "Vendor Advisory" ] } ] }