CVE-2023-36326
CRITICALRELIC < 2022-11-14 - Integer Overflow in bn_grow realloc Function
Title source: llmDescription
Integer Overflow vulnerability in RELIC before commit 34580d840469361ba9b5f001361cad659687b9ab, allows attackers to execute arbitrary code, cause a denial of service, and escalate privileges when calling realloc function in bn_grow function.
References (2)
Core 2
Scores
CVSS v3
9.8
EPSS
0.0078
EPSS Percentile
51.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-190
Status
published
Products (1)
relic_project/relic
< 2022-11-14
Published
Sep 01, 2023
Tracked Since
Feb 18, 2026