If an attacker can control both items being compared then that attacker could trigger a crash. A remote attacker can trigger denial of service conditions via the API functions TS_RESP_verify_response and TS_RESP_verify_token). The vulnerability exists due to a NULL pointer dereference error. The vulnerability allows a remote attacker to perform a denial of service (DoS) attack. CVSSv3.1: 5.9 ĬWE-ID: CWE-476 - NULL Pointer Dereference
0 Comments
Leave a Reply. |