CVE-2022-35029
First published: Thu Sep 22 2022(Updated: )
OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6babea.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Otfcc Project Otfcc |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-35029?
CVE-2022-35029 is a vulnerability found in OTFCC commit 617837b that allows for a segmentation violation through the /release-x64/otfccdump+0x6babea function.
What is the severity of CVE-2022-35029?
CVE-2022-35029 has a severity level of medium with a score of 6.5.
How can I exploit CVE-2022-35029?
Exploiting CVE-2022-35029 requires executing a specific function (/release-x64/otfccdump+0x6babea) in the vulnerable OTFCC commit 617837b.
How can I fix CVE-2022-35029?
To fix CVE-2022-35029, update to a version of OTFCC that does not contain the vulnerable commit 617837b.
Where can I find more information about CVE-2022-35029?
You can find more information about CVE-2022-35029 in the provided references: [here](https://drive.google.com/file/d/1x0eGL9tYqc7BEapsTqD78FTu9H8GKZ6l/view?usp=sharing) and [here](https://github.com/Cvjark/Poc/blob/main/otfcc/CVE-2022-35029.md).
- collector/nvd-index
- vendor/otfcc project
- canonical/otfcc project otfcc