Heap-Based Buffer Over-Read in libConfuse 3.3: cfg_tilde_expand Vulnerability

CVE-2022-40320 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.

Learn more about our Web Application Penetration Testing UK.