Description
The serializer module in OAID Tengine lite-v1.0 has a Buffer Overflow and crash. NOTE: another person has stated "I don't think there is an proof of overflow so far.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/OAID/Tengine/issues/476
Scores
CVSS v3
5.5
EPSS
0.0032
EPSS Percentile
55.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-120
Status
published
Products (1)
tengine_project/tengine
1.0
Published
Dec 26, 2020
Tracked Since
Feb 18, 2026