exploitDog

CVE-2022-36947

Опубликовано: 18 авг. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Unsafe Parsing of a PNG tRNS chunk in FastStone Image Viewer through 7.5 results in a stack buffer overflow.

Ссылки

https://wid.cert-bund.de/portal/wid/kurzinformationen
Third Party Advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0883
Third Party Advisory
https://www.faststone.org/FSViewerDetail.htm
Product
Release Notes
Vendor Advisory
https://wid.cert-bund.de/portal/wid/kurzinformationen
Third Party Advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0883
Third Party Advisory
https://www.faststone.org/FSViewerDetail.htm
Product
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:faststone:image_viewer:*:*:*:*:*:*:*:*

Версия до 7.6 (исключая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00978

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787

Связанные уязвимости

GHSA-79mp-9mjj-qfv3

CVSS3: 9.8

github

больше 3 лет назад

Unsafe Parsing of a PNG tRNS chunk in FastStone Image Viewer through 7.5 results in a stack buffer overflow.

EPSS

Процентиль: 76%

0.00978

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-787