Denial of service in Protobuf-c
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2022-33070 CVE-2022-48468 |
| CWE-ID | CWE-20 CWE-190 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
protobuf-c Other software / Other software solutions |
| Vendor | protobuf-c |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Input validation error
EUVDB-ID: #VU65855
Risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-33070
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input within the parse_tag_and_wiretype() function in protobuf-c/protobuf-c.c. A remote attacker can trick the victim to open a specially crafted file, cause an invalid arithmetic shift and perform a denial of service (DoS) attack.
MitigationInstall updates from vendor's website.
Vulnerable software versionsprotobuf-c: 0.15 - 1.4.0
CPE2.3- cpe:2.3:a:protobuf-c:protobuf-c:0.15:*:*:*:*:*:*:*
- cpe:2.3:a:protobuf-c:protobuf-c:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:protobuf-c:protobuf-c:1.0.1:*:*:*:*:*:*:*
https://github.com/protobuf-c/protobuf-c/pull/508
https://github.com/protobuf-c/protobuf-c/issues/506
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Integer overflow
EUVDB-ID: #VU75482
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2022-48468
CWE-ID:
CWE-190 - Integer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to integer overflow within parse_required_member() function. A remote attacker can pass specially crafted data to the application, trigger integer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationInstall updates from vendor's website.
Vulnerable software versionsprotobuf-c: 0.15 - 1.4.0
CPE2.3- cpe:2.3:a:protobuf-c:protobuf-c:0.15:*:*:*:*:*:*:*
- cpe:2.3:a:protobuf-c:protobuf-c:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:protobuf-c:protobuf-c:1.0.1:*:*:*:*:*:*:*
https://github.com/protobuf-c/protobuf-c/issues/499
https://github.com/protobuf-c/protobuf-c/pull/513
https://github.com/protobuf-c/protobuf-c/commit/ec3d900001a13ccdaa8aef996b34c61159c76217
https://github.com/protobuf-c/protobuf-c/releases/tag/v1.4.1
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
