Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
micropython runtime.c mp_import_all memory corruption
Vulnerability Description
A flaw has been found in micropython up to 1.27.0. This vulnerability affects the function mp_import_all of the file py/runtime.c. This manipulation causes memory corruption. The attack needs to be launched locally. The exploit has been published and may be used. Patch name: 570744d06c5ba9dba59b4c3f432ca4f0abd396b6. It is suggested to install a patch to address this issue.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
内存缓冲区边界内操作的限制不恰当
Vulnerability Title
MicroPython 缓冲区错误漏洞
Vulnerability Description
MicroPython是MicroPython开源的一个小型的开源Python编程语言解释器。 MicroPython 1.27.0及之前版本存在缓冲区错误漏洞,该漏洞源于对文件py/runtime.c中函数mp_import_all的错误操作,可能导致内存损坏。
CVSS Information
N/A
Vulnerability Type
N/A