Double Free Vulnerability in mruby 2.1.2's mrb_default_allocf

Double Free Vulnerability in mruby 2.1.2's mrb_default_allocf

CVE-2020-36401 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).

Learn more about our Web Application Penetration Testing UK.