CVE-2018-10195 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2018-10195

lrzsz before version 0.12.21~rc can leak information to the receiving side due to an incorrect length check in the function zsdata that causes a size_t to wrap around.

Published: Jun 2, 2021
Updated: Apr 13, 2023
CVE: CVE-2018-10195
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.1
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CVSS v2:

Severity: Low
Score: 3.6
AV:L/AC:L/Au:N/C:P/I:N/A:P

CWEs:

CWE-190

Affected Software
References

Software	From	Fixed in
lrzsz_project / lrzsz	-	0.12.20.x
suse / linux_enterprise_server	11-sp4	11-sp4.x
suse / linux_enterprise_debuginfo	11-sp4	11-sp4.x
suse / linux_enterprise_desktop	12-sp3	12-sp3.x
suse / linux_enterprise_server	12-sp3	12-sp3.x
debian / debian_linux	9.0	9.0.x