CVE-2020-28371

Name of the Vulnerable Software and Affected Versions ReadyTalk Avian versions 1.2.0 through 1.2.0 before 2020-10-27

Description An issue was discovered in the FileOutputStream.write() method in FileOutputStream.java, where an integer overflow leads to bypassing the boundary check and achieving out-of-bounds access. This issue affects products that are no longer supported by the maintainer.

Recommendations For ReadyTalk Avian version 1.2.0, consider disabling the FileOutputStream.write() method until a patch is available, as the product is no longer supported by the maintainer. At the moment, there is no information about a newer version that contains a fix for this vulnerability.