exploitDog

GHSA-hpmp-m758-4r73

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

An exploitable information disclosure vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an out-of-bounds read, resulting in information disclosure. An attacker can send a packet to trigger this vulnerability.

An exploitable information disclosure vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an out-of-bounds read, resulting in information disclosure. An attacker can send a packet to trigger this vulnerability.

Ссылки

EPSS

Процентиль: 54%

0.00311

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-125

Связанные уязвимости

CVE-2019-5090

CVSS3: 7.5

nvd

около 6 лет назад

An exploitable information disclosure vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an out-of-bounds read, resulting in information disclosure. An attacker can send a packet to trigger this vulnerability.

EPSS

Процентиль: 54%

0.00311

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-125