Lucene search

[email protected]NVD:CVE-2020-22524

HistoryAug 22, 2023 - 7:16 p.m.

CVE-2020-22524

2023-08-2219:16:19

CWE-120

[email protected]

web.nvd.nist.gov

buffer overflow

freeimage library

denial of service

vulnerability

cve-2020-22524

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.0%

JSON

Buffer Overflow vulnerability in FreeImage_Load function in FreeImage Library 3.19.0(r1828) allows attackers to cuase a denial of service via crafted PFM file.

Affected configurations

NVD

Node

freeimage_projectfreeimageMatch3.19.0

References

lists.debian.org/debian-lts-announce/2023/11/msg00020.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RUEK2JOVJBQZVNQIIZZO3JFMTVB4R5KS/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UGOMCRAANNCQYJYPPMGRQWKRZGIP6NME/

sourceforge.net/p/freeimage/bugs/319/

www.debian.org/security/2023/dsa-5579

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.0%

JSON

Related for NVD:CVE-2020-22524

cnvd1 cve1 debiancve1 ubuntucve1 cvelist1 prion1 osv3 openvas7 debian2 nessus5 fedora4 ubuntu1