CVE-2020-36431 — Out-of-bounds Write in Unicorn Engine

CWE-787 — Out-of-bounds Write2 documents2 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 83.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

1

Unicorn-engine Unicorn Engine

Timeline

PublishedJul 20

Latest updateMay 24

Description

Unicorn Engine 1.0.2 has an out-of-bounds write in helper_wfe_arm.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

▶NVDunicorn-engine/unicorn_engine1.0.2

Patches

Patch: bugs.chromium.org ↗Patch: bugs.chromium.org ↗

🔴Vulnerability Details

1

GHSA

GHSA-6p92-xrqh-cgxx: Unicorn Engine 1↗2022-05-24

▶

CVE-2020-36431 — Out-of-bounds Write in Unicorn Engine | cvebase