Vulnerabilities > CVE-2018-13833 - Out-of-bounds Write vulnerability in Cmft Project Cmft 20170924

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

cmft-project

CWE-787

NVD

Published: 2018-07-10

Updated: 2024-11-21

Summary

An issue was discovered in cmft through 2017-09-24. The cmft::rwReadFile function in image.cpp allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact.

Vulnerable Configurations

Part	Description	Count
Application	Cmft_Project Cmft Project Cmft - Cmft Project Cmft 2017-09-24	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/dariomanesku/cmft/issues/38
https://github.com/dariomanesku/cmft/issues/38
https://github.com/fouzhe/security/tree/master/cmft
https://github.com/fouzhe/security/tree/master/cmft