Vulnerabilities > CVE-2020-23914 - NULL Pointer Dereference vulnerability in Cpp-Peglib Project Cpp-Peglib

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

cpp-peglib-project

CWE-476

NVD

Published: 2021-04-21

Updated: 2021-04-26

Summary

An issue was discovered in cpp-peglib through v0.1.12. A NULL pointer dereference exists in the peg::AstOptimizer::optimize() located in peglib.h. It allows an attacker to cause Denial of Service.

Vulnerable Configurations

Part	Description	Count
Application	Cpp-Peglib_Project CPP Peglib Project CPP Peglib 0.1.0 CPP Peglib Project CPP Peglib 0.1.1 CPP Peglib Project CPP Peglib 0.1.2 CPP Peglib Project CPP Peglib 0.1.3 CPP Peglib Project CPP Peglib 0.1.4 CPP Peglib Project CPP Peglib 0.1.5 CPP Peglib Project CPP Peglib 0.1.6 CPP Peglib Project CPP Peglib 0.1.7 CPP Peglib Project CPP Peglib 0.1.8 CPP Peglib Project CPP Peglib 0.1.9 CPP Peglib Project CPP Peglib 0.1.10 CPP Peglib Project CPP Peglib 0.1.11 CPP Peglib Project CPP Peglib 0.1.12	13

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References