9.8

CVE-2019-9215

In Live555 before 2019.02.27, malformed headers lead to invalid memory access in the parseAuthorizationHeader function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Live555Streaming Media Version < 2019.02.27
OpensuseBackports Sle Version15.0 Update-
OpensuseBackports Sle Version15.0 Updatesp1
OpensuseLeap Version15.0
OpensuseLeap Version15.1
OpensuseLeap Version15.2
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.17% 0.799
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.live555.com/liveMedia/public/changelog.txt
Vendor Advisory
https://security.gentoo.org/glsa/202005-06
Third Party Advisory
https://seclists.org/bugtraq/2019/Mar/22
Third Party Advisory
Mailing List
https://www.debian.org/security/2019/dsa-4408
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00044.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00024.html
Third Party Advisory
Mailing List
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00009.html
Third Party Advisory
Mailing List
https://lists.debian.org/debian-lts-announce/2019/03/msg00022.html
Third Party Advisory
Mailing List