CyberSec.Space Logo
Back to CVE Browser

CVE-2018-21027

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0540%
EPSS Percentile42.87th
PublishedOct 11, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition because malloc is mishandled.

Affected Platforms (CPE)

πŸ“¦
Boa

Boa

<= 0.94.14.21

References & Advisories

πŸ”— https://github.com/gpg/boa/pull/1
πŸ”— https://github.com/gpg/boa/pull/1/commits/e139b87835994d007fbd64eead6c1455d7b8cf4e
πŸ”— https://github.com/gpg/boa/pull/1
πŸ”— https://github.com/gpg/boa/pull/1/commits/e139b87835994d007fbd64eead6c1455d7b8cf4e

Related Vulnerabilities

CVE-2007-491510.0

The Intersil isl3893 extensions for Boa 0.93.15, as used on the FreeLan RO80211G-AP and other devices, do not prevent stack writes...

CVE-2021-315779.8

In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of pri...

CVE-2021-353959.8

Realtek Jungle SDK version v2.x up to v3.4.14B provides an HTTP web server exposing a management interface that can be used to con...

CVE-2021-315789.8

In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privil...