Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
BehaviorTree Diagnostic Message script_parser.cpp ParseScript stack-based overflow
Vulnerability Description
A vulnerability was determined in BehaviorTree up to 4.7.0. This affects the function ParseScript of the file /src/script_parser.cpp of the component Diagnostic Message Handler. Executing manipulation of the argument error_msgs_buffer can lead to stack-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. This patch is called cb6c7514efa628adb8180b58b4c9ccdebbe096e3. A patch should be applied to remediate this issue.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
BehaviorTree.CPP 安全漏洞
Vulnerability Description
BehaviorTree.CPP是BehaviorTree开源的一个C++中的行为树的库。 BehaviorTree.CPP 4.7.0及之前版本存在安全漏洞,该漏洞源于对文件/src/script_parser.cpp中参数error_msgs_buffer的错误操作,可能导致基于栈的缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A