How severe is CVE-2020-27790?

CVE-2020-27790 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2020-27790

Name: upx
Author: upx

5.5MEDIUM

A floating point exception issue was discovered in UPX in PackLinuxElf64::invert_pt_dynamic() function of p_lx_elf.cpp file. An attacker with a crafted input file could trigger this issue that could c

게시됨: 8/18/2022업데이트됨: 4/11/2025

설명

A floating point exception issue was discovered in UPX in PackLinuxElf64::invert_pt_dynamic() function of p_lx_elf.cpp file. An attacker with a crafted input file could trigger this issue that could cause a crash leading to a denial of service. The highest impact is to Availability.

AI 분석AI 기반

영향받는 제품

upxupx

참조

https://github.com/upx/upx/commit/eb90eab6325d009004ffb155e3e33f22d4d3ca26
PatchThird Party Advisory
https://github.com/upx/upx/issues/331
ExploitIssue TrackingPatchThird Party Advisory
https://github.com/upx/upx/commit/eb90eab6325d009004ffb155e3e33f22d4d3ca26
PatchThird Party Advisory
https://github.com/upx/upx/issues/331
ExploitIssue TrackingPatchThird Party Advisory