First published: Thu Sep 22 2022(Updated: )
OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b064d.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Otfcc Project Otfcc |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-35038 is medium with a CVSS score of 6.5.
CVE-2022-35038 can be exploited through a heap buffer overflow in the 'otfccdump' executable.
The Otfcc software (version commit 617837b) is affected by CVE-2022-35038.
To fix CVE-2022-35038, it is recommended to update Otfcc to a version that addresses the heap buffer overflow vulnerability.
You can find more information about CVE-2022-35038 in the provided references: [link1](https://drive.google.com/file/d/1jhHvfkoD7fuMWbrhYxbOnJaSeW-Y2lKI/view?usp=sharing), [link2](https://github.com/Cvjark/Poc/blob/main/otfcc/CVE-2022-35038.md).