Vulnerabilities > CVE-2021-32419 - Out-of-bounds Write vulnerability in Schismtracker Schism Tracker

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

schismtracker

CWE-787

NVD

Published: 2023-02-17

Updated: 2024-11-21

Summary

An issue in Schism Tracker v20200412 fixed in v.20200412 allows attacker to obtain sensitive information via the fmt_mtm_load_song function in fmt/mtm.c.

Vulnerable Configurations

Part	Description	Count
Application	Schismtracker Schismtracker Schism Tracker 20180513 Schismtracker Schism Tracker 20180810 Schismtracker Schism Tracker 20181223 Schismtracker Schism Tracker 20190614 Schismtracker Schism Tracker 20190722 Schismtracker Schism Tracker 20190805	6

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/schismtracker/schismtracker/commit/1e2cc389a2a058fd13d99460c11115a6f7f7a6a4
https://github.com/schismtracker/schismtracker/commit/1e2cc389a2a058fd13d99460c11115a6f7f7a6a4
https://github.com/schismtracker/schismtracker/issues/249
https://github.com/schismtracker/schismtracker/issues/249