Improper Handling of Length Parameter Inconsistency
CVE-2022-2714
Summary
Improper Handling of Length Parameter Inconsistency in francoisjacquet/rosariosis prior to 10.1.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- HIGH
CWE-130 - Improper Handling of Length Parameter Inconsistency
The software parses a formatted message or structure, but it does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data.
References
Advisory Timeline
- Published