Handler on Duty: Didier Stevens
Threat Level: green
| Published | 2023-02-06 19:15:00 |
|---|---|
| Last Modified | 2023-02-14 18:52:00 |
| AKA | CVE-2023-0687 |
| Summary | A vulnerability was found in GNU C Library 2.38. It has been declared as critical. This vulnerability affects the function __monstartup of the file gmon.c of the component Call Graph Monitor. The manipulation leads to buffer overflow. It is recommended to apply a patch to fix this issue. VDB-220246 is the identifier assigned to this vulnerability. |
| CVSS Score | 4 |
| Access Vector | Local | Adjacent | Network |
|---|---|---|---|
| Access Complexity | Low | Medium | High |
| Authentication | None | Single | Multiple |
| Confidentiality | None | Partial | Complete |
| Integrity | None | Partial | Complete |
| Availability | None | Partial | Complete |
