CVE-2018-10774
MEDIUMbibutils < 6.2 - Denial of Service via isiin_keyword Function
Title source: llmDescription
Read access violation in the isiin_keyword function in isiin.c in libbibutils.a in bibutils through 6.2 allows remote attackers to cause a denial of service (application crash), as demonstrated by isi2xml.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://docs.google.com/document/d/1BuCxbXaGL_3DyaWF8sGnMAWolmYQneRrxHt4mNPkBE4/edit
Scores
CVSS v3
6.5
EPSS
0.0142
EPSS Percentile
69.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (1)
bibutils_project/bibutils
< 6.2
Published
May 07, 2018
Tracked Since
Feb 18, 2026