Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-46046

Published: 27/03/2024 Updated: 04/06/2024

Vulnerability Summary

An issue in MiniZinc prior to 2.8.0 allows a NULL pointer dereference via ti_expr in a crafted .mzn file. NOTE: this is disputed because there is no common libminizinc use case in which an unattended process is supposed to run forever to process a series of atttacker-controlled .mzn files.

Mailing Lists

Full Disclosure: null pointer deference in MiniZinc via a crafted .mzn file
[Vulnerability description] Null pointer deference happens in MiniZinc v276 via a crafted mzn file [VulnerabilityType Other] null pointer deference [Vendor of Product] MiniZinc [Affected Product Code Base] MiniZinc - 276 [Reference] githubcom/MiniZinc/libminizinc/issues/730 [CVE Reference] The Common Vulnerabilities and Exposur ...

References

https://github.com/MiniZinc/libminizinc/issues/730http://seclists.org/fulldisclosure/2024/Jan/63https://www.minizinc.org/doc-2.8.3/en/changelog.htmlhttps://github.com/MiniZinc/libminizinc/commit/afe67acc20898e4308044b54c4acf7a08df544f0https://nvd.nist.govhttps://seclists.org/fulldisclosure/2024/Jan/63
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223CVE-2024-0044information disclosureCVE-2024-35753HTML injectionCVE-2024-21306CVE-2024-35733SQL injectionCVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook