Incorrect Calculation of Buffer Size

CVE-2022-32630

Medium

6.7/10

Summary

In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07405966; Issue ID: ALPS07405966.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: HIGH
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-131 - Incorrect Calculation of Buffer Size

The software does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

References

Advisory Timeline

Published Dec 05, 2022

Incorrect Calculation of Buffer Size

CVE-2022-32630

Summary

CWE-131 - Incorrect Calculation of Buffer Size

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS