Vulnerabilities > CVE-2022-24988 - Off-by-one Error vulnerability in Galois 2P8 Project Galois 2P8 0.1.0/0.1.1

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
galois-2p8-project
CWE-193
critical

Summary

In galois_2p8 before 0.1.2, PrimitivePolynomialField::new has an off-by-one buffer overflow for a vector.

Common Weakness Enumeration (CWE)