CVE-2020-13995
Last modified
CVE-2020-13995 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. EPSS estimates a 2.71% chance of exploitation in the next 30 days.
Description
U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable (sBuffer) leads to a Write-What-Where outcome. Writing beyond sBuffer will clobber most global variables until reaching a pointer such as DES_info or image_info. By controlling that pointer, one achieves an arbitrary write when its fields are assigned. The data written is from a potentially untrusted NITF file in the form of an integer. The attacker can gain control of the instruction pointer.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Airforce | Nitf Extract Utility | 7.5 |
References
- https://www.riverloopsecurity.com/blog/2020/09/nitf-extract75-cve-2020-13995/Exploit, Third Party Advisory
- https://www.riverloopsecurity.com/blog/2020/09/nitf-extract75-cve-2020-13995/Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-13995?
How severe is CVE-2020-13995?
How do I fix CVE-2020-13995?
Are you affected by CVE-2020-13995?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST