How severe is CVE-2021-26615?

CVE-2021-26615 has a CVSS v3 score of 7.8 (HIGH).

CVE-2021-26615

Name: linux_kernel
Author: linux

7.8HIGH

ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow.

Publicado: 11/26/2021Actualizado: 11/21/2024

Descripción

ARK library allows attackers to execute remote code via the parameter(path value) of Ark_NormalizeAndDupPAthNameW function because of an integer overflow.

Análisis IAImpulsado por IA

Productos Afectados

bandisoftark_library

7.13.0.3

linuxlinux_kernel

Referencias

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36361
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36361
Third Party Advisory