exploitDog

GHSA-fpgh-8prc-x8m5

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at Xfpx!gffGetFormatInfo+0x000000000002e385."

XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at Xfpx!gffGetFormatInfo+0x000000000002e385."

Ссылки

EPSS

Процентиль: 71%

0.00682

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2017-9900

CVSS3: 7.8

nvd

больше 8 лет назад

XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to "Data from Faulting Address controls Code Flow starting at Xfpx!gffGetFormatInfo+0x000000000002e385."

EPSS

Процентиль: 71%

0.00682

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-119