CVE-2022-1427

Out-of-bounds Read in mrb_obj_is_kind_of in in mruby/mruby

CVSS 7.7 HIGHEPSS 0.4%CWE-125

Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2. # Impact: Possible arbitrary code execution if being exploited.

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Produtos afetados

mruby · mruby/mruby

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/mruby/mruby/commit/a4d97934d51cb88954cc49161dc1d151f64afb6b https://huntr.dev/bounties/23b6f0a9-64f5-421e-a55f-b5b7a671f301