Lucene search
HistoryJan 09, 2024 - 11:15 p.m.
CVE-2023-47994
vulnerability
loadpixeldatarle4
pluginbmp
sensitive information
denial of service
arbitrary code
cve-2023-47994
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
37.4%
An integer overflow vulnerability in LoadPixelDataRLE4 function in PluginBMP.cpp in Freeimage 3.18.0 allows attackers to obtain sensitive information, cause a denial of service and/or run arbitrary code.
Affected configurations
Node
freeimage_projectfreeimageMatch3.18.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| freeimage_project | freeimage | 3.18.0 | cpe:2.3:a:freeimage_project:freeimage:3.18.0:*:*:*:*:*:*:* |
Related
prion
prion
Integer overflow
2024-01-09 23:15:00
ubuntucve
ubuntucve
CVE-2023-47994
2024-01-09 00:00:00
cve
cve
CVE-2023-47994
2024-01-09 23:15:09
debiancve
debiancve
CVE-2023-47994
2024-01-09 23:15:09
cvelist
cvelist
CVE-2023-47994
2024-01-09 00:00:00
alpinelinux
alpinelinux
CVE-2023-47994
2024-01-09 23:15:09
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
37.4%
Related for NVD:CVE-2023-47994