logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2021-46879

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2021-46879

Description:
An issue was discovered in Treasure Data Fluent Bit 1.7.1, a wrong variable is used to get the msgpack data resulting in a heap overflow in flb_msgpack_gelf_value_ext. An attacker can craft a malicious file and tick the victim to open the file with the software, triggering a heap overflow and execute arbitrary code on the target system.
Last updated date:
04/26/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
04/26/2023
Reference url to background

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26851

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy