Vulnerabilities > CVE-2021-3548 - Unspecified vulnerability in Dmg2Img Project Dmg2Img 20170502

047910
CVSS 7.1 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
dmg2img-project

Summary

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy() inside the main() function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution.

Vulnerable Configurations

Part Description Count
Application
Dmg2Img_Project
2