Out-of-Bounds Read Vulnerability in LibSass through 3.5.4

Out-of-Bounds Read Vulnerability in LibSass through 3.5.4

CVE-2018-11693 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:P

An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::skip_over_scopes which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.

Learn more about our Web Application Penetration Testing UK.