5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.021 Low
EPSS
Percentile
88.9%
The Portable Network Graphics library (libpng) 1.0.15 and earlier allows
attackers to cause a denial of service (crash) via a malformed PNG image
file that triggers an error that causes an out-of-bounds read when creating
the error message.