PT-2021-12667 · Voiceye · Voiceye Wsactivebridgees

Published

2021-02-24

Updated

2021-03-02

CVE-2020-7836

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: VOICEYE WSActiveBridgeES versions prior to 2.1.0.3

Description: The issue is caused by improper bound checking of a parameter given by an attack, leading to a stack-based buffer overflow via access to a crafted web page.

Recommendations: For VOICEYE WSActiveBridgeES versions prior to 2.1.0.3, update to version 2.1.0.3 or later to resolve the issue.

Fix

Memory Corruption

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-121

Related Identifiers

CVE-2020-7836

Affected Products

Voiceye Wsactivebridgees

PT-2021-12667 · Voiceye · Voiceye Wsactivebridgees

CVE-2020-7836

Weakness Enumeration

Related Identifiers

Affected Products

References · 6