How severe is CVE-2021-26615?

CVE-2021-26615 has a CVSS v3 score of 7.8 (HIGH).

CVE-2021-26615

Name: linux_kernel
Author: linux

7.8HIGH

ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow.

Published: 11/26/2021Updated: 11/21/2024

Description

ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow.

AI AnalysisPowered by AI

Affected Products

bandisoftark_library

7.13.0.3

linuxlinux_kernel

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36361
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36361
Third Party Advisory