CVE-2018-15158

Severity CVSS v4.0:
Pending analysis
Type:
CWE-125 Out-of-bounds Read
Publication date:
01/09/2018
Last modified:
17/06/2026

Description

The libesedb_page_read_values function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:libesedb_project:libesedb:*:*:*:*:*:*:*:* 2018-04-01 (including)