[Apiiro] Container Security Findings - Critical Severity · Critical Risk

Discovered on: Jun 19, 2024 19:25

Finding details:
Finding name: Integer Overflow or Wraparound
Severity: Critical
Sources: Snyk Container

About this vulnerability:
Identifiers:

CVE-2023-45853
SNYK-DEBIAN12-ZLIB-6008963-VendorSpecific

CVSS v3.0: 9.8
CWE links:

CWE-190

Exploit maturity: No exploit maturity data
Introduced through:

zlib/zlib1g: 1:1.2.13.dfsg-1
util-linux/util-linux: 2.38.1-5+b1 > zlib/zlib1g: 1:1.2.13.dfsg-1
apt: 2.6.1 > apt/libapt-pkg6.0: 2.6.1 > zlib/zlib1g: 1:1.2.13.dfsg-1
apt: 2.6.1 > gnupg2/gpgv: 2.2.40-1.1 > zlib/zlib1g: 1:1.2.13.dfsg-1
dash: 0.5.12-2 > dpkg: 1.21.22 > zlib/zlib1g: 1:1.2.13.dfsg-1

Affected assets:
Dependency: zlib/zlib1g: 1:1.2.13.dfsg-1
Container image: neritest/gooddebian
Image digests: 7c288032ecf3319045d9fa538c3b0cc868a320d01d03bce15b99c2c336319994
View in Apiiro

shukibakbuki / dingdong

[Apiiro] Container Security Findings - Critical Severity · Critical Risk #125