Lucene search

MitreCVELIST:CVE-2020-24293

HistoryAug 22, 2023 - 12:00 a.m.

CVE-2020-24293

2023-08-2200:00:00

mitre

www.cve.org

cve-2020-24293

psdparser

remote attackers

arbitrary code

crafted psd file

vulnerability

AI Score

8.7

Confidence

High

EPSS

0.003

Percentile

69.0%

JSON

Buffer Overflow vulnerability in psdThumbnail::Read in PSDParser.cpp in FreeImage 3.19.0 [r1859] allows remote attackers to run arbitrary code via opening of crafted psd file.

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HFRQ76ZDPSWT7OH6FJDLSFWBXVBE6JDN/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M6GKMK74POW3RU7F4HLUJE7XEFLQDO35/

sourceforge.net/p/freeimage/discussion/36111/thread/afb98701eb/