Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2014-8138

Опубликовано: 24 дек. 2014
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*

EPSS

Процентиль: 90%
0.05895
Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2014-8138

ubuntu
больше 10 лет назад

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.

redhat логотип

CVE-2014-8138

redhat
больше 10 лет назад

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.

debian логотип

CVE-2014-8138

debian
больше 10 лет назад

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900. ...

github логотип

GHSA-vv3q-8xfg-h2jp

github
больше 3 лет назад

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.

suse-cvrf логотип

SUSE-SU-2015:0258-1

suse-cvrf
больше 10 лет назад

Security update for jasper

EPSS

Процентиль: 90%
0.05895
Низкий

7.5 High

CVSS2

Дефекты

CWE-119