Vulnerability Details : CVE-2022-38936
An issue has been found in PBC through 2022-8-27. A SEGV issue detected in the function pbc_wmessage_integer in src/wmessage.c:137.
Products affected by CVE-2022-38936
- cpe:2.3:a:pbc_project:pbc:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-38936
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 30 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-38936
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
NIST |
CWE ids for CVE-2022-38936
-
The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.Assigned by: nvd@nist.gov (Primary)
References for CVE-2022-38936
-
https://github.com/cloudwu/pbc/issues/158
SEGV issue detected in pbc_wmessage_integer src/wmessage.c:137 · Issue #158 · cloudwu/pbc · GitHubExploit;Issue Tracking;Third Party Advisory
Jump to