PT-2022-27184 · Picoc · Picoc
Halcy0Nic
·
Published
2022-11-08
·
Updated
2022-11-08
·
CVE-2022-44320
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
PicoC version 3.2.2
Description
A heap buffer overflow was discovered in the ExpressionCoerceFP function in expression.c when called from ExpressionParseFunctionCall, potentially allowing for exploitation.
Recommendations
For PicoC version 3.2.2, at the moment, there is no information about a newer version that contains a fix for this issue.
Exploit
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Picoc