← back
CVE-2018-10921

CVE-2018-10921

CVSS 4.3 MEDIUMEPSS 1.0%CWE-20
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.3EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
02 Aug 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Certain input files may trigger an integer overflow in ttembed input file processing. This overflow could potentially lead to corruption of the input file due to a lack of checking return codes of fgetc/fputc function calls.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected products
[UNKNOWN] · ttembed

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10921https://github.com/hisdeedsaredust/ttembed/issues/3