Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
libretro RetroArch file_stream.c filestream_vscanf out-of-bounds
Vulnerability Description
A flaw has been found in libretro RetroArch 1.18.0/1.19.0/1.20.0. This affects the function filestream_vscanf of the file libretro-common/streams/file_stream.c. This manipulation causes out-of-bounds read. The attack needs to be launched locally. Upgrading to version 1.21.0 mitigates this issue. It is recommended to upgrade the affected component.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
跨界内存读
Vulnerability Title
RetroArch 安全漏洞
Vulnerability Description
RetroArch是Libretro开源的一个 Libretro API 的参考前端。 RetroArch 1.18.0版本、1.19.0版本和1.20.0版本存在安全漏洞,该漏洞源于filestream_vscanf函数存在越界读取,可能导致本地攻击。
CVSS Information
N/A
Vulnerability Type
N/A