Vulnerabilities > CVE-2019-15938 - Out-of-bounds Write vulnerability in Pengutronix Barebox

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
pengutronix
CWE-787

Summary

Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_req in fs/nfs.c because a length field is directly used for a memcpy.

Vulnerable Configurations

Part Description Count
Application
Pengutronix
130

Common Weakness Enumeration (CWE)