CVE-2022-29693

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 02-06-2022 04:15

Last modified: - 09-06-2022 10:42

Total changes: - 2

Description

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function uc_close at /my/unicorn/uc.c.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

None

Confidentiality

None

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

7.5

Base score

3.9

3.6

Exploitability score

Impact score

Verification logic

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=rc2

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=rc3

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=rc4

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=rc5

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=rc1

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=-

vendor=unicorn-engine AND product=unicorn_engine AND version=2.0.0 AND update=rc6

vendor=unicorn-engine AND product=unicorn_engine AND versionEndExcluding=2.0.0

Reference

Keywords

CVE-2022-29693

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2022-29693

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures