CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-11590

There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0.2.5. A crafted input will lead to a remote denial of service attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 76.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 4.3

References

https://bugzilla.redhat.com/show_bug.cgi?id=1473167
https://bugzilla.redhat.com/show_bug.cgi?id=1473167

Products affected by CVE-2017-11590

Gnome » Libgxps » Version: 0.2.5

cpe:2.3:a:gnome:libgxps:0.2.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-11590

Products

Pricing

Contact Us