Heap-Based Buffer Over-Read Vulnerability in nDPI H.323 Dissector
CVE-2020-15472

9.1CRITICAL

Key Information:

Vendor: Ntop
Status: Ndpi
Vendor: CVE Published:; 1 July 2020

What is CVE-2020-15472?

A vulnerability exists in nDPI versions up to 3.2 where the H.323 dissector is susceptible to a heap-based buffer over-read. This can occur in the ndpi_search_h323 function, particularly when a payload packet's length is shorter than expected. As a result, this may lead to unintended access to memory beyond the allocated buffers, potentially allowing for further exploitation or denial of service. It is crucial for users of nDPI to update to the latest version to avoid these risks.

References

https://github.com/ntop/nDPI/commit/b7e666e465f138ae48ab8...

x_refsource_MISC

https://lists.debian.org/debian-lts-announce/2022/08/msg0...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

9.1

Severity:

CRITICAL

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 1, 2020
Vulnerability Reserved
Jul 1, 2020

CVE-2020-15472 Data

JSON

Ntop

What is CVE-2020-15472?

References

CVSS V3.1

Timeline