CVE-2023-46045
on gitlab
Published
Severity
CVSS v3:
7.8 HIGH
CVSS v2:
N/A
Description
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:graphviz:graphviz:*:*:*:*:*:*:*:* | 2.36.0 (including) | 10.0.0 | * |