CVE-2021-38479

CWE-787: OUT-OF-BOUNDS WRITE
Many API function codes receive raw pointers remotely from the user and trust these pointers as valid in-bound memory regions. An attacker can manipulate API functions by writing arbitrary data into the resolved address of a raw pointer.
Successful exploitation of these vulnerabilities could allow an attacker to achieve remote code execution, and acquire complete remote control over the machine.
Read: “Claroty, Auvesy Coordinate Disclosure on Versiondog Vulnerabilities

Risk Information

  • CVE ID
  • CVE-2021-38479
  • Vendor
  • AUVESY
  • Product
  • versiondog
  • CVSS v3
  • 6.5