Miggo Logo
Miggo Vulnerability Database
CVE-2022-38306

CVE-2022-38306: LIEF vulnerable to heap based buffer overflow

5.5

CVSS Score
3.1

Basic Information

CVE ID
CVE-2022-38306
GHSA ID
GHSA-52xx-r3g2-p8jm
EPSS Score
0.14267%
CWE
CWE-787
Published
9/14/2022
Updated
1/29/2023
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
liefpip>= 0, <= 0.12.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerable function is identified by analyzing the patch provided in the commit diff. The change indicates a fix for a heap-buffer overflow vulnerability in the CorePrPsInfo::parse_() function, which is a template function instantiated for both ELF32 and ELF64. The original code's vulnerability and the patch's mitigation are directly related to how the pr_fname field is handled.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

LI** *ommit ******* w*s *is*ov*r** to *ont*in * ***p-*u***r ov*r*low in t** *ompon*nt `/*or*/*or*PrPsIn*o.t**`. *ommit **************************************** *ont*ins * p*t**.

Reasoning

T** vuln*r**l* *un*tion is i**nti*i** *y *n*lyzin* t** p*t** provi*** in t** *ommit *i**. T** ***n** in*i**t*s * *ix *or * ***p-*u***r ov*r*low vuln*r**ility in t** *or*PrPsIn*o::p*rs*_() *un*tion, w*i** is * t*mpl*t* *un*tion inst*nti*t** *or *ot* *