CVE-2023-4508
MEDIUMgerbv 2.4.0-2.10.0 - Denial of Service via Crafted Gerber RS-274X File
Title source: llmDescription
A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash and cause denial-of-service with a specially crafted Gerber RS-274X file.
References (3)
Core 3
Core References
Exploit, Issue Tracking, Third Party Advisory issue-tracking
https://github.com/gerbv/gerbv/issues/191
Third Party Advisory issue-tracking
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4508
Scores
CVSS v3
5.5
EPSS
0.0031
EPSS Percentile
22.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-824
Status
published
Products (1)
gerbv_project/gerbv
2.4.0 - 2.10.0
Published
Aug 24, 2023
Tracked Since
Feb 18, 2026