CVE-2022-37781

fdkaac v1.0.3 was discovered to contain a heap buffer overflow via __interceptor_memcpy.part.46 at /sanitizer_common/sanitizer_common_interceptors.inc.

CVSS v3.0 7.8 HIGH

7.8^/10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/nu774/fdkaac/issues/54	Exploit Issue Tracking Patch Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:fdkaac_project:fdkaac:1.0.3:*:*:*:*:*:*:*

Information

Published : 2022-08-16 14:15

Updated : 2022-08-18 07:09

NVD link : CVE-2022-37781

Mitre link : CVE-2022-37781

JSON object : View

CWE

CWE-787

Out-of-bounds Write

Products Affected

fdkaac_project

fdkaac

7.8 /10