CVE-2020-18652

Опубликовано: 22 авг. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.

Ссылки

https://gitlab.freedesktop.org/libopenraw/exempi/commit/acee2894ceb91616543927c2a6e45050c60f98f7
Patch
https://gitlab.freedesktop.org/libopenraw/exempi/issues/12
Exploit
Issue Tracking
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/09/msg00032.html
https://gitlab.freedesktop.org/libopenraw/exempi/commit/acee2894ceb91616543927c2a6e45050c60f98f7
Patch
https://gitlab.freedesktop.org/libopenraw/exempi/issues/12
Exploit
Issue Tracking
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/09/msg00032.html

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:exempi_project:exempi:*:*:*:*:*:*:*:*

Версия до 2.5.0 (включая)

EPSS

Процентиль: 77%

0.01062

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2020-18652

CVSS3: 6.5

ubuntu

почти 2 года назад

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.

CVE-2020-18652

CVSS3: 6.5

redhat

почти 2 года назад

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.

CVE-2020-18652

CVSS3: 6.5

debian

почти 2 года назад

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and ...

SUSE-SU-2023:3518-1

suse-cvrf

почти 2 года назад

Security update for exempi

GHSA-fm7g-gm7p-w792

CVSS3: 6.5

github

почти 2 года назад

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.

EPSS

Процентиль: 77%

0.01062

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-787