CVE-2017-18009

Опубликовано: 01 янв. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmt_hdr.cpp.

Ссылки

http://www.securityfocus.com/bid/106945
Third Party Advisory
VDB Entry
https://github.com/opencv/opencv/issues/10479
Issue Tracking
Third Party Advisory
http://www.securityfocus.com/bid/106945
Third Party Advisory
VDB Entry
https://github.com/opencv/opencv/issues/10479
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opencv:opencv:3.3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00403

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

CVE-2017-18009

CVSS3: 7.5

ubuntu

около 8 лет назад

In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmt_hdr.cpp.

CVE-2017-18009

CVSS3: 4.4

redhat

около 8 лет назад

In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmt_hdr.cpp.

CVE-2017-18009

CVSS3: 7.5

debian

около 8 лет назад

In OpenCV 3.3.1, a heap-based buffer over-read exists in the function ...

openSUSE-SU-2018:1697-1

suse-cvrf

больше 7 лет назад

Security update for opencv

GHSA-83rh-hx5x-q9p5

CVSS3: 7.5

github

больше 4 лет назад

Out-of-bounds Read in OpenCV

EPSS

Процентиль: 60%

0.00403

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125