Vulnerabilities > CVE-2018-13833 - Out-of-bounds Write vulnerability in Cmft Project Cmft 20170924

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

cmft-project

CWE-787

NVD

Published: 2018-07-10

Updated: 2020-08-24

Summary

An issue was discovered in cmft through 2017-09-24. The cmft::rwReadFile function in image.cpp allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact.

Vulnerable Configurations

Part	Description	Count
Application	Cmft_Project Cmft Project Cmft - Cmft Project Cmft 2017-09-24	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/dariomanesku/cmft/issues/38
https://github.com/fouzhe/security/tree/master/cmft