CVE-2019-5020 — Reachable Assertion in Yara

CWE-617 — Reachable Assertion CWE-754 — Improper Check for Unusual or Exceptional Conditions CWE-20 — Improper Input Validation5 documents5 sources

Severity

5.5MEDIUMNVD

EPSS

0.3%

top 47.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Virustotal Yara

Timeline

PublishedJul 31

Latest updateMay 24

Description

An exploitable denial of service vulnerability exists in the object lookup functionality of Yara 3.8.1. A specially crafted binary file can cause a negative value to be read to satisfy an assert, resulting in Denial of Service. An attacker can create a malicious binary to trigger this vulnerability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶Debianvirustotal/yara< 3.9.0-1+3

▶NVDvirustotal/yara3.8.1

🔴Vulnerability Details

GHSA

GHSA-6r2m-f9j9-h374: An exploitable denial of service vulnerability exists in the object lookup functionality of Yara 3↗2022-05-24

▶

CVEList

CVE-2019-5020: An exploitable denial of service vulnerability exists in the object lookup functionality of Yara 3↗2019-07-31

▶

OSV

CVE-2019-5020: An exploitable denial of service vulnerability exists in the object lookup functionality of Yara 3↗2019-07-31

▶

📋Vendor Advisories

Debian

CVE-2019-5020: yara - An exploitable denial of service vulnerability exists in the object lookup funct...↗2019

▶