Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-20098

Опубликовано: 12 дек. 2018
Источник: nvd
CVSS3: 6.5
CVSS2: 4.3
EPSS Низкий

Описание

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:exiv2:exiv2:0.27:rc3:*:*:*:*:*:*

EPSS

Процентиль: 63%
0.00464
Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

CVSS3: 6.5
ubuntu
больше 6 лет назад

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.

CVSS3: 3.3
redhat
больше 6 лет назад

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.

CVSS3: 6.5
debian
больше 6 лет назад

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2He ...

CVSS3: 6.5
github
около 3 лет назад

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.

suse-cvrf
больше 2 лет назад

Security update for exiv2

EPSS

Процентиль: 63%
0.00464
Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-125