Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-7395

Опубликовано: 11 сент. 2016
Источник: nvd
CVSS3: 8.8
CVSS2: 6.8
EPSS Низкий

Описание

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
Версия до 52.0.2743.116 (включая)

EPSS

Процентиль: 70%
0.00629
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-19

Связанные уязвимости

ubuntu логотип

CVE-2016-7395

CVSS3: 8.8
ubuntu
больше 9 лет назад

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

debian логотип

CVE-2016-7395

CVSS3: 8.8
debian
больше 9 лет назад

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Wi ...

github логотип

GHSA-89h8-vm89-88m9

CVSS3: 8.8
github
больше 3 лет назад

SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data.

EPSS

Процентиль: 70%
0.00629
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-19