CVE-2012-6696

EPSS 0.65%
Published 25.09.2017 21:29:00
Last modified 20.04.2025 01:37:25
Source cve@mitre.org
Teams watchlist Login
Open Login

inspircd in Debian before 2.0.7 does not properly handle unsigned integers.  NOTE: This vulnerability exists because of an incomplete fix to CVE-2012-1836.

Affected products Warnungen 0 Metrics 3 CWE 1 References 6

Data is provided by the National Vulnerability Database (NVD)

Inspircd ≫ Inspircd Version <= 2.0.5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.65%	0.686

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.debian.org/security/2015/dsa-3226

Third Party Advisory

http://www.openwall.com/lists/oss-security/2015/08/26/1

Third Party Advisory

Mailing List

https://github.com/inspircd/inspircd/commit/ed28c1ba666b39581adb860bf51cdde43c84cc89

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2012-6696

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-6696

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-6696

EUVD