This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Agronholm First view 2024-02-19
Product cbor2 Last view 2024-02-19
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:agronholm:cbor2:*:*:*:*:*:python:*:* 1

Related : CVE

  Date Alert Description
7.5 2024-02-19 CVE-2024-26134

cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) (RFC 8949) serialization format. Starting in version 5.5.1 and prior to version 5.6.2, an attacker can crash a service using cbor2 to parse a CBOR binary by sending a long enough object. Version 5.6.2 contains a patch for this issue.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflo...