CVE-2020-35494
Description
There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to application availability with a lower threat to data confidentiality. This flaw affects binutils versions prior to 2.34.
- CVSS Version 3.1
- CVSS Version 2.0
nvd
CVE ID: CVE-2020-35494
Base Score: 6.1
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Impact Score: 4.2
Exploitability Score: 1.8
nvd
CVE ID: CVE-2020-35494
Base Score: 5.8
Base Severity: MEDIUM
Vector String:AV:N/AC:M/Au:N/C:P/I:N/A:P
Refrence: NVD