InriaCVEs & Vulnerabilities
2 CVEs affecting Inria products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
ocaml 18caml-light 1
CVE-2011-4119CRITICAL
caml-light <= 0.75 uses mktemp() insecurely, and also does unsafe things in /tmp during make install.
26 Oct 2021
9.8
CVSS
CVE-2012-0839MEDIUM
OCaml 3.12.1 and earlier computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
8 Feb 2012
5.0
CVSS
← PrevPage 1 / 1Next →