CVE-2022-063219.02.2022, 14:15NULL Pointer Dereference in Homebrew mruby prior to 3.2.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTPrimary5.5 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HBase ScoreCVSS 3.xEPSS ScorePercentile: UnknownAffected Products (NVD)VendorProductVersionmrubymruby𝑥< 3.2𝑥= Vulnerable software versionsDebian ReleasesDebian ProductCodenamemrubybookworm3.1.0-3fixedbullseye2.1.2-3fixedsid3.3.0-1fixedtrixie3.3.0-1fixedUbuntu ReleasesUbuntu ProductCodenamemrubybionicneeds-triagefocalneeds-triageimpishignoredjammyneeds-triagekineticignoredlunarignoredmanticignorednobleneeds-triagetrustyignoredxenialneeds-triageKnown Exploits!https://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1bhttps://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1bCommon Weakness EnumerationCWE-476 - NULL Pointer DereferenceA NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.Referenceshttps://github.com/mruby/mruby/commit/44f591aa8f7091e6ca6cb418e428ae6d4ceaf77dhttps://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1bhttps://github.com/mruby/mruby/commit/44f591aa8f7091e6ca6cb418e428ae6d4ceaf77dhttps://huntr.dev/bounties/3e5bb8f6-30fd-4553-86dd-761e9459ce1b
