CVE-2020-9759 — Download of Code Without Integrity Check in Weechat
CWE-494 — Download of Code Without Integrity CheckCWE-476 — NULL Pointer Dereference11 documents6 sources
Severity
7.8HIGHNVD
OSV7.5
EPSS
0.2%
top 63.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 23
Latest updateMay 24
Description
A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. This vulnerability is due to wrong environment setting. An attacker could exploit this vulnerability through crafted configuration files and executable files.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages3 packages
🔴Vulnerability Details
3📋Vendor Advisories
2💬Community
5Bugzilla▶
CVE-2020-9759 weechat: malformed message 352 (who) can cause a NULL pointer dereference in the callback function which could result in a crash. [epel-7]↗2020-03-26
Bugzilla▶
CVE-2020-9759 weechat: malformed message 352 (who) can cause a NULL pointer dereference in the callback function which could result in a crash. [fedora-all]↗2020-03-26
Bugzilla▶
CVE-2020-9759 weechat: malformed message 352 (who) can cause a NULL pointer dereference in the callback function which could result in a crash. [epel-6]↗2020-03-26
Bugzilla▶
CVE-2020-9759 weechat: malformed message 352 (who) can cause a NULL pointer dereference in the callback function which could result in a crash.↗2020-03-26
Bugzilla▶
CVE-2020-9759 weechat: malformed message 352 (who) can cause a NULL pointer dereference in the callback function which could result in a crash. [epel-6]↗2020-03-26