An high privileged attacker may pass crafted arguments to the validate function of csaf-validator-lib of a locally installed Secvisogram in versions < 0.1.0 wich can result in arbitrary code execution and DoS once the users triggers the validation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
csaf-validator-lib project csaf-validator-lib |