ByteOS Network

0Vulnerabilities found

CVE-2019-5064

Assigner-Talos

View Details

Assigner-Talos

CVSS Score-8.8||HIGH

EPSS-3.24% / 86.59%

7 Day CHG~0.00%

Published-03 Jan, 2020 | 16:57

Updated-04 Aug, 2024 | 19:47

An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, before version 4.2.0. A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability.

Vendor-opencv n/a Oracle Corporation

Product-application_testing_suite big_data_spatial_and_graph enterprise_manager_base_platform opencv OpenCV

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE ID-CWE-787

Out-of-bounds Write

CVE-2019-5063

Assigner-Talos

View Details

Assigner-Talos

CVSS Score-8.8||HIGH

EPSS-6.68% / 90.85%

7 Day CHG~0.00%

Published-03 Jan, 2020 | 16:57

Updated-04 Aug, 2024 | 19:47

An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV 4.1.0. A specially crafted XML file can cause a buffer overflow, resulting in multiple heap corruptions and potential code execution. An attacker can provide a specially crafted file to trigger this vulnerability.

Vendor-opencv n/a Oracle Corporation

Product-application_testing_suite big_data_spatial_and_graph enterprise_manager_base_platform opencv OpenCV

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE ID-CWE-787

Out-of-bounds Write

N/A

Source -

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -