Out-of-Bounds

Affecting cups package, versions <2.2.10-6+deb10u3

Report new vulnerabilities
Do your applications use this vulnerable package? Test your applications

Overview

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.

References

CVSS Score

7.8
high severity
  • Attack Vector
    Local
  • Attack Complexity
    Low
  • Privileges Required
    Low
  • User Interaction
    None
  • Scope
    Unchanged
  • Confidentiality
    High
  • Integrity
    High
  • Availability
    High
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVE
CVE-2020-3898
CWE
CWE-119
Snyk ID
SNYK-DEBIAN10-CUPS-567151
Disclosed
22 Oct, 2020
Published
22 Apr, 2020