Lucene search
HistoryFeb 09, 2024 - 3:15 p.m.
CVE-2024-25446
hugin
huginbase
ptools
setdestimage
heap buffer overflow
crafted image
cve-2024-25446
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
21.5%
An issue in the HuginBase::PTools::setDestImage function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via parsing a crafted image.
Affected configurations
Node
hugin_projecthuginMatch2022.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| hugin_project | hugin | 2022.0.0 | cpe:2.3:a:hugin_project:hugin:2022.0.0:*:*:*:*:*:*:* |
Related
vulnrichment
vulnrichment
CVE-2024-25446
2024-02-09 00:00:00
veracode
veracode
Heap Buffer Overflow
2024-02-14 11:29:24
cve
cve
CVE-2024-25446
2024-02-09 15:15:08
osv
osv
CVE-2024-25446
2024-02-09 15:15:08
prion
prion
Heap overflow
2024-02-09 15:15:00
debiancve
debiancve
CVE-2024-25446
2024-02-09 15:15:08
cvelist
cvelist
CVE-2024-25446
2024-02-09 00:00:00
ubuntucve
ubuntucve
CVE-2024-25446
2024-02-09 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: hugin-2023.0.0-2.fc38
2024-02-20 01:37:46
nessus
nessus
openSUSE 15 Security Update : hugin (openSUSE-SU-2024:0047-1)
2024-02-17 00:00:00
Fedora 38 : hugin (2024-60cefb07e8)
2024-02-19 00:00:00
openvas
openvas
Fedora: Security Advisory for hugin (FEDORA-2024-60cefb07e8)
2024-02-20 00:00:00
openSUSE: Security Advisory for hugin (openSUSE-SU-2024:0047-1)
2024-03-04 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
21.5%
Related for NVD:CVE-2024-25446