Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-47992

Опубликовано: 09 янв. 2024
Источник: debian
EPSS Низкий

Описание

An integer overflow vulnerability in FreeImageIO.cpp::_MemoryReadProc in FreeImage 3.18.0 allows attackers to obtain sensitive information, cause a denial-of-service attacks and/or run arbitrary code.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
freeimageunfixedpackage
freeimagepostponedtrixiepackage
freeimagepostponedbookwormpackage
freeimagepostponedbullseyepackage
freeimagepostponedbusterpackage

Примечания

  • https://github.com/thelastede/FreeImage-cve-poc/tree/master/CVE-2023-47992

  • https://sourceforge.net/p/freeimage/bugs/357/

EPSS

Процентиль: 42%
0.00197
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-47992

CVSS3: 8.8
ubuntu
около 2 лет назад

An integer overflow vulnerability in FreeImageIO.cpp::_MemoryReadProc in FreeImage 3.18.0 allows attackers to obtain sensitive information, cause a denial-of-service attacks and/or run arbitrary code.

nvd логотип

CVE-2023-47992

CVSS3: 8.8
nvd
около 2 лет назад

An integer overflow vulnerability in FreeImageIO.cpp::_MemoryReadProc in FreeImage 3.18.0 allows attackers to obtain sensitive information, cause a denial-of-service attacks and/or run arbitrary code.

github логотип

GHSA-hj68-qmgw-mf32

CVSS3: 8.8
github
около 2 лет назад

An integer overflow vulnerability in FreeImageIO.cpp::_MemoryReadProc in FreeImage 3.18.0 allows attackers to obtain sensitive information, cause a denial-of-service attacks and/or run arbitrary code.

EPSS

Процентиль: 42%
0.00197
Низкий