ID | CVE-2020-24371 |
Summary | lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage. |
References | |
Vulnerable Configurations | |
CVSS | Base: | 5.0 (as of 30-09-2020 – 21:15) | Impact: | | Exploitability: | |
|
CWE | CWE-763 |
CAPEC | |
Access | Vector | Complexity | Authentication | NETWORK | LOW | NONE |
|
Impact | Confidentiality | Integrity | Availability | NONE | NONE | PARTIAL |
|
cvss-vector via4 | AV:N/AC:L/Au:N/C:N/I:N/A:P |
refmap via4 | |
Last major update | 30-09-2020 – 21:15 |
Published | 17-08-2020 – 17:15 |
Last modified | 30-09-2020 – 21:15 |