CVE-2022-063219.02.2022, 14:15NULL Pointer Dereference in Homebrew mruby prior to 3.2.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.5 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H@huntrdevCNA5.5 MEDIUMLOCALLOWNONECVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 51%VendorProductVersionmrubymruby𝑥< 3.2𝑥= Vulnerable software versionsDebian ReleasesDebian ProductCodenamemrubybullseye2.1.2-3fixedbookworm3.1.0-3fixedsid3.3.0-1fixedtrixie3.3.0-1fixedUbuntu ReleasesUbuntu ProductCodenamemrubynobleneeds-triagemanticignoredlunarignoredkineticignoredjammyneeds-triageimpishignoredfocalneeds-triagebionicneeds-triagexenialneeds-triagetrustyignoredKnown Exploits!https://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1bhttps://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1bCommon Weakness EnumerationCWE-476 - NULL Pointer DereferenceA NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.Referenceshttps://github.com/mruby/mruby/commit/44f591aa8f7091e6ca6cb418e428ae6d4ceaf77dhttps://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1bhttps://github.com/mruby/mruby/commit/44f591aa8f7091e6ca6cb418e428ae6d4ceaf77dhttps://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1b
