9.8
CVE-2019-18604
- EPSS 0.2%
- Veröffentlicht 29.10.2019 19:15:19
- Zuletzt bearbeitet 21.11.2024 04:33:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginIn axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Axohelp.C Project ≫ Axohelp.C Version < 1.3
Axodraw2 Project ≫ Axodraw2 Version <= 2.1.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.2% | 0.421 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|