Vulnerabilities > CVE-2023-37185 - NULL Pointer Dereference vulnerability in C-Blosc2 Project C-Blosc2

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
c-blosc2-project
CWE-476

Summary

C-blosc2 before 2.9.3 was discovered to contain a NULL pointer dereference via the function zfp_prec_decompress at zfp/blosc2-zfp.c.

Common Weakness Enumeration (CWE)