CVE-2014-9157

Published December 3rd, 2014

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string.

ellson/MOTHBALLED-graphviz

Moved to https://gitlab.com/graphviz/graphviz

GitHub

1.3K