CVE-2020-36400

CVE-2020-36400

EPSS 1.8%

ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcp_read, a different vulnerability than CVE-2021-20235.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26042 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libzmq/OSV-2020-1887.yaml https://github.com/zeromq/libzmq/commit/397ac80850bf8d010fae23dd215db0ee2c677306