cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-24240,https://securityvulnerability.io/vulnerability/CVE-2020-24240,,"GNU Bison before 3.7.1 has a use-after-free in _obstack_free in lib/obstack.c (called from gram_lex) when a '\0' byte is encountered. NOTE: there is a risk only if Bison is used with untrusted input, and the observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug report was intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.",Gnu,Bison,5.5,MEDIUM,0.0008699999889358878,false,false,false,false,,false,false,2020-08-25T13:45:01.000Z,0
CVE-2020-14150,https://securityvulnerability.io/vulnerability/CVE-2020-14150,,"GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison.",Gnu,Bison,5.5,MEDIUM,0.0004400000034365803,false,false,false,false,,false,false,2020-06-15T16:52:10.000Z,0