CVE-2014-9157

Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via…

mitre·CWE-134·Published 2014-12-03

CVSS

—

EPSS

0.06

KEV

Exploits

Vendor statements (3)

cve.orgen

235 chars

Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string.

NVDes

284 chars

Vulnerabilidad de formato de cadena en la función yyerror en ib/cgraph/scan.l en Graphviz permite a atacantes remotos tener un impacto no especificado a través de especificadores de formatos de cadena en vectores desconocidos, que no están manejados correctamente en una cadena error.

CVE-2014-9157

Vendor statements (3)

CVSS metrics across sources