PT-2022-12647 · Unknown · Moddable Sdk

Hope-Fly

Published

2022-01-20

Updated

2022-01-26

CVE-2021-46333

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Moddable SDK version 11.5.0

Description The issue is related to an invalid memory access vulnerability in the Moddable SDK. This vulnerability occurs via the component asan memmove.

Recommendations For Moddable SDK version 11.5.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2021-46333

Affected Products

Moddable Sdk

PT-2022-12647 · Unknown · Moddable Sdk

CVE-2021-46333

Weakness Enumeration

Related Identifiers

Affected Products

References · 4