CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-4024

Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.135

EPSS Ranking 93.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2016-4024

Enlightenment » Imlib2 » Version: 1.2.1

cpe:2.3:a:enlightenment:imlib2:1.2.1
Enlightenment » Imlib2 » Version: 1.2.2

cpe:2.3:a:enlightenment:imlib2:1.2.2
Enlightenment » Imlib2 » Version: 1.3.0

cpe:2.3:a:enlightenment:imlib2:1.3.0
Enlightenment » Imlib2 » Version: 1.4.0

cpe:2.3:a:enlightenment:imlib2:1.4.0
Enlightenment » Imlib2 » Version: 1.4.1

cpe:2.3:a:enlightenment:imlib2:1.4.1
Enlightenment » Imlib2 » Version: 1.4.2

cpe:2.3:a:enlightenment:imlib2:1.4.2
Enlightenment » Imlib2 » Version: 1.4.3

cpe:2.3:a:enlightenment:imlib2:1.4.3
Enlightenment » Imlib2 » Version: 1.4.4

cpe:2.3:a:enlightenment:imlib2:1.4.4
Enlightenment » Imlib2 » Version: 1.4.5

cpe:2.3:a:enlightenment:imlib2:1.4.5
Enlightenment » Imlib2 » Version: 1.4.6

cpe:2.3:a:enlightenment:imlib2:1.4.6
Enlightenment » Imlib2 » Version: 1.4.7

cpe:2.3:a:enlightenment:imlib2:1.4.7
Enlightenment » Imlib2 » Version: 1.4.8

cpe:2.3:a:enlightenment:imlib2:1.4.8
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Opensuse » Opensuse » Version: 13.2

cpe:2.3:o:opensuse:opensuse:13.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-4024

Products

Pricing

Contact Us