CVE-2022-25515 - OpenCVE

stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Nothings	Stb Truetype.h

Configuration 1 [-]

cpe:2.3:a:nothings:stb_truetype.h:1.26:*:*:*:*:*:*:*

References

Link	Resource
https://github.com/nothings/stb/issues/1286	Exploit Issue Tracking Third Party Advisory
https://github.com/nothings/stb/issues/1288	Exploit Issue Tracking Third Party Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-03-17T00:00:00

Updated: 2022-10-31T00:00:00

Reserved: 2022-02-21T00:00:00

Link: CVE-2022-25515

JSON object: View

NVD Information

Status : Modified

Published: 2022-03-17T01:15:07.020

Modified: 2024-05-17T02:06:40.303

Link: CVE-2022-25515

JSON object: View

Redhat Information

No data.

CWE

CWE-787

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:nothings:stb_truetype.h:1.26:*:*:*:*:*:*:*", "matchCriteriaId": "0A85C59A-992C-40DA-B113-A0F5FF9C1A9B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input."}, {"lang": "es", "value": "** EN DISPUTA ** Se ha detectado que stb_truetype.h versi\u00f3n v1.26, contiene un desbordamiento del buffer de la pila por medio de la funci\u00f3n ttULONG() en el archivo stb_truetype.h. NOTA: Un tercero ha disputado diciendo que el c\u00f3digo fuente tiene tambi\u00e9n una cl\u00e1usula de exenci\u00f3n de responsabilidad de que s\u00f3lo debe usarse con informaci\u00f3n de confianza."}], "id": "CVE-2022-25515", "lastModified": "2024-05-17T02:06:40.303", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-03-17T01:15:07.020", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "url": "https://github.com/nothings/stb/issues/1286"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Issue Tracking", "Third Party Advisory"], "url": "https://github.com/nothings/stb/issues/1288"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}