A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
busybox busybox 1.35.0 |
||
siemens scalance_sc622-2c_firmware |
||
siemens scalance_sc626-2c_firmware |
||
siemens scalance_sc632-2c_firmware |
||
siemens scalance_sc636-2c_firmware |
||
siemens scalance_sc642-2c_firmware |
||
siemens scalance_sc646-2c_firmware |