PT-2019-11445 · Openmodelica · Openmodelica Omcompiler

Sajeeb Lohani

Published

2019-07-15

Updated

2021-07-21

CVE-2019-1010038

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: OpenModelica OMCompiler (affected versions not specified)

Description: The issue affects the OpenModelica OMCompiler, allowing for possible code execution and denial of service due to a buffer overflow. The component vulnerable to this issue is the OPENMODELICAHOME parameter, which can be changed via an environment variable. An attacker can exploit this by changing an environment variable.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2019-1010038

Affected Products

Openmodelica Omcompiler

PT-2019-11445 · Openmodelica · Openmodelica Omcompiler

CVE-2019-1010038

Weakness Enumeration

Related Identifiers

Affected Products

References · 3