CVE-2023-1157
LOWelf-parser - Denial of Service in get_segments Function
Title source: llmDescription
A vulnerability, which was classified as problematic, was found in finixbit elf-parser. Affected is the function elf_parser::Elf_parser::get_segments of the file elf_parser.cpp. The manipulation leads to denial of service. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. VDB-222222 is the identifier assigned to this vulnerability.
References (3)
Core 3
Core References
Third Party Advisory vdb-entry
technical-description
https://vuldb.com/?id.222222
Permissions Required, Third Party Advisory signature
permissions-required
https://vuldb.com/?ctiid.222222
Exploit, Third Party Advisory exploit
https://github.com/10cksYiqiyinHangzhouTechnology/elf-parser_segments_poc
Scores
CVSS v3
2.8
EPSS
0.0037
EPSS Percentile
28.4%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
Details
CWE
CWE-404
Status
published
Products (1)
elf-parser_project/elf-parser
Published
Mar 02, 2023
Tracked Since
Feb 18, 2026