CVE-2024-26540

Опубликовано: 15 мар. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library::CImg::_load_analyze.

https://github.com/GreycLab/CImg/issues/403
Exploit
Issue Tracking
Third Party Advisory
https://github.com/GreycLab/CImg/issues/403
Exploit
Issue Tracking
Third Party Advisory

Конфигурация 1

cpe:2.3:a:cimg:cimg:*:*:*:*:*:*:*:*

Версия до 3.3.3 (исключая)

EPSS

Процентиль: 33%

0.00131

Низкий

7.8 High

CVSS3

CWE-122

CVE-2024-26540

CVSS3: 7.8

ubuntu

почти 2 года назад

A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library::CImg<unsigned char>::_load_analyze.

CVE-2024-26540

CVSS3: 7.8

debian

почти 2 года назад

A heap-based buffer overflow in Clmg before 3.3.3 can occur via a craf ...

GHSA-c2c4-4544-w949

CVSS3: 7.8

github

почти 2 года назад

A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library::CImg<unsigned char>::_load_analyze.

EPSS

Процентиль: 33%

0.00131

Низкий

7.8 High

CVSS3

CWE-122