Lucene search

K
cvelistRedhatCVELIST:CVE-2020-36330
HistoryMay 21, 2021 - 4:19 p.m.

CVE-2020-36330

2021-05-2116:19:44
CWE-125
redhat
www.cve.org
2

AI Score

9.2

Confidence

High

EPSS

0.004

Percentile

74.4%

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.

CNA Affected

[
  {
    "product": "libwebp",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "libwebp 1.0.1"
      }
    ]
  }
]