Vulnerabilities > CVE-2020-23911 - NULL Pointer Dereference vulnerability in Asn1C Project Asn1C 0.9.28

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

asn1c-project

CWE-476

NVD

Published: 2023-07-18

Updated: 2024-11-21

Summary

An issue was discovered in asn1c through v0.9.28. A NULL pointer dereference exists in the function _default_error_logger() located in asn1fix.c. It allows an attacker to cause Denial of Service.

Vulnerable Configurations

Part	Description	Count
Application	Asn1C_Project Asn1C Project Asn1C 0.9.28	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://github.com/vlm/asn1c/issues/394
https://github.com/vlm/asn1c/issues/394