Stack-based Buffer Over-read Vulnerability in dbus-broker

Stack-based Buffer Over-read Vulnerability in dbus-broker

CVE-2022-31212 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

An issue was discovered in dbus-broker before 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.

Learn more about our Web Application Penetration Testing UK.