Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2020-36401

Published: 01/07/2021 Updated: 06/07/2021
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Mruby

Vulnerability Summary

mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

mruby mruby 2.1.2

Vendor Advisories

Debian CVElist Bug Report Logs: mruby: CVE-2020-36401
Debian Bug report logs - #990540 mruby: CVE-2020-36401 Package: src:mruby; Maintainer for src:mruby is Nobuhiro Iwamatsu <iwamatsu@debianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Thu, 1 Jul 2021 15:24:02 UTC Severity: grave Tags: security, upstream Found in version mruby/212-2 Reply or su ...
Arch Linux Issues:
mruby 212 has a double free in mrb_default_allocf (called from mrb_free and obj_free) ...

References

CWE-415https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=23801https://github.com/mruby/mruby/commit/97319697c8f9f6ff27b32589947e1918e3015503https://github.com/google/oss-fuzz-vulns/blob/main/vulns/mruby/OSV-2020-744.yamlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990540https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook