Sane-Project Sane Backends vulnerabilities

9 known vulnerabilities affecting sane-project/sane_backends.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM5

Vulnerabilities

Page 1 of 1
CVE-2023-46052HIGHCVSS 7.1v1.2.12024-03-27
CVE-2023-46052 [HIGH] CVE-2023-46052: Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string i Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file. NOTE: this is disputed because there is no expectation that test.c code should be executed with an attacker-controlled configuration file.
nvd
CVE-2023-46047HIGHCVSS 7.3v1.2.12024-03-27
CVE-2023-46047 [HIGH] CWE-20 CVE-2023-46047: An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the s An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the sanei_configure_attach() function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file.
nvd
CVE-2020-12865HIGHCVSS 8.0fixed in 1.0.302020-06-24
CVE-2020-12865 [HIGH] CWE-787 CVE-2020-12865: A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.
nvd
CVE-2020-12861HIGHCVSS 8.8fixed in 1.0.302020-06-24
CVE-2020-12861 [HIGH] CWE-787 CVE-2020-12861: A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the sam A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080.
nvd
CVE-2020-12866MEDIUMCVSS 5.7fixed in 1.0.302020-06-24
CVE-2020-12866 [MEDIUM] CWE-476 CVE-2020-12866: A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079.
nvd
CVE-2020-12864MEDIUMCVSS 4.3fixed in 1.0.302020-06-24
CVE-2020-12864 [MEDIUM] CWE-125 CVE-2020-12864: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the s An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-081.
nvd
CVE-2020-12862MEDIUMCVSS 4.3fixed in 1.0.302020-06-24
CVE-2020-12862 [MEDIUM] CWE-125 CVE-2020-12862: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the s An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.
nvd
CVE-2020-12863MEDIUMCVSS 4.3fixed in 1.0.302020-06-24
CVE-2020-12863 [MEDIUM] CWE-125 CVE-2020-12863: An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the s An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-083.
nvd
CVE-2020-12867MEDIUMCVSS 5.5fixed in 1.0.302020-06-01
CVE-2020-12867 [MEDIUM] CWE-476 CVE-2020-12867: A NULL pointer dereference in sanei_epson_net_read in SANE Backends before 1.0.30 allows a malicious A NULL pointer dereference in sanei_epson_net_read in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, aka GHSL-2020-075.
nvd