---

CVE-2021-40403 - log back

CVE-2021-40403 edited at 25 Nov 2021 20:36:25
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ An information disclosure vulnerability exists in the pick-and-place rotation parsing functionality of Gerbv 2.8.1. A specially-crafted pick-and-place file can exploit the missing initialization of a structure to leak memory contents. An attacker can provide a malicious file to trigger this vulnerability.
References	+ https://talosintelligence.com/vulnerability_reports/TALOS-2021-1417 + https://github.com/gerbv/gerbv/issues/82

CVE-2021-40403 created at 25 Nov 2021 20:31:37