CVE-2019-20063
HIGHlibmysofa < 0.8 - Uninitialized Memory Use in HDF Data Object Handling
Title source: llmDescription
hdf/dataobject.c in libmysofa before 0.8 has an uninitialized use of memory, as demonstrated by mysofa2json.
References (2)
Core 2
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://github.com/hoene/libmysofa/issues/67
Release Notes, Third Party Advisory x_refsource_misc
https://github.com/hoene/libmysofa/compare/v0.7...v0.8
Scores
CVSS v3
8.8
EPSS
0.0167
EPSS Percentile
73.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-665
Status
published
Products (1)
symonics/libmysofa
< 0.8
Published
Dec 29, 2019
Tracked Since
Feb 18, 2026