CVE-2018-12648

Опубликовано: 22 июн. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 4.3

EPSS Низкий

Описание

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00070.html
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00075.html
https://bugs.freedesktop.org/show_bug.cgi?id=106981
Exploit
Issue Tracking
Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00070.html
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00075.html
https://bugs.freedesktop.org/show_bug.cgi?id=106981
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:exempi_project:exempi:2.4.5:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00415

Низкий

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2018-12648

CVSS3: 7.5

ubuntu

больше 7 лет назад

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.

CVE-2018-12648

CVSS3: 3.3

redhat

больше 7 лет назад

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.

CVE-2018-12648

CVSS3: 7.5

debian

больше 7 лет назад

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Suppo ...

openSUSE-SU-2019:1657-1

suse-cvrf

больше 6 лет назад

Security update for exempi

openSUSE-SU-2019:1649-1

suse-cvrf

больше 6 лет назад

Security update for exempi

EPSS

Процентиль: 61%

0.00415

Низкий

7.5 High

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476