Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Memory Corruption vulnerability in SAP CommonCryptoLib
Vulnerability Description
SAP CommonCryptoLib does not perform necessary boundary checks during pre-authentication parsing of manipulated ASN.1 data over the network. This may result in memory corruption followed by an application crash, hence leading to a high impact on availability. There is no impact on confidentiality or integrity.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
SAP CommonCryptoLib 缓冲区错误漏洞
Vulnerability Description
SAP CommonCryptoLib是德国思爱普(SAP)公司的一个密码库。 SAP CommonCryptoLib存在缓冲区错误漏洞,该漏洞源于预身份验证期间解析网络中的特制ASN.1数据时未执行必要的边界检查,可能导致内存损坏和应用程序崩溃,严重影响可用性。
CVSS Information
N/A
Vulnerability Type
N/A