Lucene search

K
cvelistMitreCVELIST:CVE-2013-7327
HistoryFeb 18, 2014 - 11:00 a.m.

CVE-2013-7327

2014-02-1811:00:00
mitre
www.cve.org

9.8 High

AI Score

Confidence

High

0.048 Low

EPSS

Percentile

92.7%

The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return value, a different vulnerability than CVE-2013-7226.

9.8 High

AI Score

Confidence

High

0.048 Low

EPSS

Percentile

92.7%