VDB
CVE-2020-36619
CVE-2020-36619
PUBLISHED
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the function add_ch of the file demod_flex.c. The manipulation of the argument ch leads to format string. Upgrading to version 1.2.0 is able to address this issue. The name of the patch is e5a51c508ef952e81a6da25b43034dd1ed023c07. It is recommended to upgrade the affected component. The identifier VDB-216269 was assigned to this vulnerability.
EPSS 1.61% · 82.1th percentile
Risk Scores
EPSS Score
1.61%
82.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:22.04:LTS | multimon-ng | 0, 1.1.9+dfsg-1, * |
| Ubuntu:20.04:LTS | multimon-ng | 0, 1.1.8+dfsg-1build1 |
Exploit Intelligence
Timeline
- Dec 19, 2022 CVE Published
- Dec 20, 2022 EPSS Score
- Jan 31, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 13, 2023 EPSS Score
- Jun 4, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Aug 27, 2023 EPSS Score
- Oct 7, 2023 EPSS Score
- Nov 18, 2023 EPSS Score
- Dec 30, 2023 EPSS Score
- Feb 9, 2024 EPSS Score
References
- https://ubuntu.com/security/CVE-2020-36619 third-party-advisory
- https://github.com/EliasOenal/multimon-ng/pull/160 third-party-advisory
- https://github.com/EliasOenal/multimon-ng/releases/tag/1.2.0 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2020-36619 third-party-advisory