CVE-2022-34970

Crow before 1.0+4 has a heap-based buffer overflow via the function qs_parse in query_string.h. On successful exploitation this vulnerability allows attackers to remotely execute arbitrary code in the context of the vulnerable service.
Configurations

Configuration 1

cpe:2.3:a:crowcpp:crow:*:*:*:*:*:*:*:*

Information

Published : 2022-08-04 07:15

Updated : 2022-08-10 06:35


NVD link : CVE-2022-34970

Mitre link : CVE-2022-34970

Products Affected
No products.
CWE
CWE-193

Off-by-one Error