Vulnerabilities > CVE-2017-1000072 - Double Free vulnerability in Creolabs Gravity 1.0

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

creolabs

CWE-415

NVD

Published: 2017-07-17

Updated: 2017-07-19

Summary

Creolabs Gravity version 1.0 is vulnerable to a Double Free in gravity_value resulting potentially leading to modification of unexpected memory locations

Vulnerable Configurations

Part	Description	Count
Application	Creolabs Creolabs Gravity 1.0	1

Common Weakness Enumeration (CWE)

CWE-415 - Double Free

References

https://github.com/marcobambini/gravity/issues/123