Msrc Azl3 Openslp 2.0.0-26 On Azure Linux 3.0 vulnerabilities
2 known vulnerabilities affecting msrc/azl3_openslp_2.0.0-26_on_azure_linux_3.0.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2019-5544CRITICALCVSS 9.8KEVPoC2019-12-10
CVE-2019-5544 [CRITICAL] CWE-787 OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base scor
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
FAQ: Is Azure Linux the only Microsoft product that inc
msrc
CVE-2016-7567CRITICALCVSS 9.8PoC2017-01-10
CVE-2016-7567 [CRITICAL] CWE-119 Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string.
Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerabil
msrc