Lucene search
MitreVULNRICHMENT:CVE-2023-36308HistorySep 05, 2023 - 12:00 a.m.
CVE-2023-36308
2023-09-0500:00:00
mitre
github.com
7
imaging 1.6.2
cve-2023-36308
integer index out of range
grayscale call
crafted tiff file
security consequence
AI Score
6.6
Confidence
High
EPSS
0
Percentile
10.3%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
disintegration Imaging 1.6.2 allows attackers to cause a panic (because of an integer index out of range during a Grayscale call) via a crafted TIFF file to the scan function of scanner.go. NOTE: it is unclear whether there are common use cases in which this panic could have any security consequence
Related
nessus
nessus
Fedora 39 : kitty (2024-25b47765c6)
2024-06-03 00:00:00
debiancve
debiancve
CVE-2023-36308
2023-09-05 04:15:08
cve
cve
CVE-2023-36308
2023-09-05 04:15:08
prion
prion
Design/Logic Flaw
2023-09-05 04:15:00
osv
osv
Crash when processing crafted TIFF files
2023-09-05 06:30:14
Panic when parsing invalid palette-color images in golang.org/x/image
2024-06-25 22:06:09
fedora
fedora
[SECURITY] Fedora 39 Update: kitty-0.31.0-2.fc39
2024-06-03 01:07:26
cvelist
cvelist
CVE-2023-36308
2023-09-05 00:00:00
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-25b47765c6)
2024-06-07 00:00:00
ubuntucve
ubuntucve
CVE-2023-36308
2023-09-05 00:00:00
nvd
nvd
CVE-2023-36308
2023-09-05 04:15:08
github
github
Crash when processing crafted TIFF files
2023-09-05 06:30:14
AI Score
6.6
Confidence
High
EPSS
0
Percentile
10.3%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-36308