Strix
26.1K

CVE-2019-19648

HIGHCVSS 7.8/10EPSS 1.59%

Last modified

CVE-2019-19648 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service (application crash) or potential code execution.. EPSS estimates a 1.59% chance of exploitation in the next 30 days.

Description

In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service (application crash) or potential code execution.

Metrics

CVSS 3.1
7.8/10

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Probability
1.59%

72.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
VirustotalYara3.11.0
FedoraprojectFedora33
FedoraprojectFedora34

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-19648?
In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service (application crash) or potential code execution.
How severe is CVE-2019-19648?
CVE-2019-19648 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 1.59% probability of exploitation in the next 30 days.
How do I fix CVE-2019-19648?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-19648?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST