CVE-2018-19838

moderate-risk

Published 2018-12-04

In LibSass prior to 3.5.5, functions inside ast.cpp for IMPLEMENT_AST_OPERATORS expansion allow attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, as demonstrated by recursive calls involving clone(), cloneChildren(), and copy().

Do I need to act?

-

0.75% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

6

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (1)

Libsass

Affected Vendors

Sass-Lang

References (8)

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00051.html

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00027.html

Exploit https://github.com/sass/libsass/issues/2660

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00051.html

http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00027.html

Exploit https://github.com/sass/libsass/issues/2660

32

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 3/34 · Minimal

Exposure 5/34 · Minimal