5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.7%
An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service.
github.com/nokiatech/heif/issues/85