CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
A vulnerability in the Gstreamer multimedia framework is associated with an integer overflow when processing
EXIF file metadata. Exploitation of the vulnerability could allow an attacker to execute
arbitrary code
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
redos | 7.3 | x86_64 | gstreamer1-plugins-base | < 1.16.3-3 | UNKNOWN |