CVE-2018-19837

moderate-risk

Published 2018-12-04

In LibSass prior to 3.5.5, Sass::Eval::operator()(Sass::Binary_Expression*) inside eval.cpp allows attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, because of certain incorrect parsing of '%' as a modulo operator in parser.cpp.

Do I need to act?

-

0.68% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

6

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (1)

Libsass

Affected Vendors

Sass-Lang

References (10)

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00051.html

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00027.html

Exploit https://github.com/sass/libsass/commit/210fdff7a65370c2ae24e022a2b35da8c423cc5f

Patch https://github.com/sass/libsass/issues/2659

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00051.html

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00027.html

Exploit https://github.com/sass/libsass/commit/210fdff7a65370c2ae24e022a2b35da8c423cc5f

Patch https://github.com/sass/libsass/issues/2659

31

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 2/34 · Minimal

Exposure 5/34 · Minimal