Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-12863

In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.8%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
Products affected by CVE-2017-12863
  • Opencv » Opencv » Version: 2.2
    cpe:2.3:a:opencv:opencv:2.2
  • Opencv » Opencv » Version: 2.3.0
    cpe:2.3:a:opencv:opencv:2.3.0
  • Opencv » Opencv » Version: 2.3.1
    cpe:2.3:a:opencv:opencv:2.3.1
  • Opencv » Opencv » Version: 2.4.0
    cpe:2.3:a:opencv:opencv:2.4.0
  • Opencv » Opencv » Version: 2.4.1
    cpe:2.3:a:opencv:opencv:2.4.1
  • Opencv » Opencv » Version: 2.4.10
    cpe:2.3:a:opencv:opencv:2.4.10
  • Opencv » Opencv » Version: 2.4.10.1
    cpe:2.3:a:opencv:opencv:2.4.10.1
  • Opencv » Opencv » Version: 2.4.10.2
    cpe:2.3:a:opencv:opencv:2.4.10.2
  • Opencv » Opencv » Version: 2.4.10.3
    cpe:2.3:a:opencv:opencv:2.4.10.3
  • Opencv » Opencv » Version: 2.4.10.4
    cpe:2.3:a:opencv:opencv:2.4.10.4
  • Opencv » Opencv » Version: 2.4.11
    cpe:2.3:a:opencv:opencv:2.4.11
  • Opencv » Opencv » Version: 2.4.12
    cpe:2.3:a:opencv:opencv:2.4.12
  • Opencv » Opencv » Version: 2.4.12.1
    cpe:2.3:a:opencv:opencv:2.4.12.1
  • Opencv » Opencv » Version: 2.4.12.2
    cpe:2.3:a:opencv:opencv:2.4.12.2
  • Opencv » Opencv » Version: 2.4.12.3
    cpe:2.3:a:opencv:opencv:2.4.12.3
  • Opencv » Opencv » Version: 2.4.13
    cpe:2.3:a:opencv:opencv:2.4.13
  • Opencv » Opencv » Version: 2.4.13.1
    cpe:2.3:a:opencv:opencv:2.4.13.1
  • Opencv » Opencv » Version: 2.4.13.2
    cpe:2.3:a:opencv:opencv:2.4.13.2
  • Opencv » Opencv » Version: 2.4.13.3
    cpe:2.3:a:opencv:opencv:2.4.13.3
  • Opencv » Opencv » Version: 2.4.13.4
    cpe:2.3:a:opencv:opencv:2.4.13.4
  • Opencv » Opencv » Version: 2.4.13.5
    cpe:2.3:a:opencv:opencv:2.4.13.5
  • Opencv » Opencv » Version: 2.4.13.6
    cpe:2.3:a:opencv:opencv:2.4.13.6
  • Opencv » Opencv » Version: 2.4.13.7
    cpe:2.3:a:opencv:opencv:2.4.13.7
  • Opencv » Opencv » Version: 2.4.2
    cpe:2.3:a:opencv:opencv:2.4.2
  • Opencv » Opencv » Version: 2.4.3
    cpe:2.3:a:opencv:opencv:2.4.3
  • Opencv » Opencv » Version: 2.4.3.1
    cpe:2.3:a:opencv:opencv:2.4.3.1
  • Opencv » Opencv » Version: 2.4.3.2
    cpe:2.3:a:opencv:opencv:2.4.3.2
  • Opencv » Opencv » Version: 2.4.4
    cpe:2.3:a:opencv:opencv:2.4.4
  • Opencv » Opencv » Version: 2.4.5
    cpe:2.3:a:opencv:opencv:2.4.5
  • Opencv » Opencv » Version: 2.4.6
    cpe:2.3:a:opencv:opencv:2.4.6
  • Opencv » Opencv » Version: 2.4.6.1
    cpe:2.3:a:opencv:opencv:2.4.6.1
  • Opencv » Opencv » Version: 2.4.6.2
    cpe:2.3:a:opencv:opencv:2.4.6.2
  • Opencv » Opencv » Version: 2.4.7
    cpe:2.3:a:opencv:opencv:2.4.7
  • Opencv » Opencv » Version: 2.4.7.1
    cpe:2.3:a:opencv:opencv:2.4.7.1
  • Opencv » Opencv » Version: 2.4.7.2
    cpe:2.3:a:opencv:opencv:2.4.7.2
  • Opencv » Opencv » Version: 2.4.8
    cpe:2.3:a:opencv:opencv:2.4.8
  • Opencv » Opencv » Version: 2.4.8.1
    cpe:2.3:a:opencv:opencv:2.4.8.1
  • Opencv » Opencv » Version: 2.4.8.2
    cpe:2.3:a:opencv:opencv:2.4.8.2
  • Opencv » Opencv » Version: 2.4.8.3
    cpe:2.3:a:opencv:opencv:2.4.8.3
  • Opencv » Opencv » Version: 2.4.9
    cpe:2.3:a:opencv:opencv:2.4.9
  • Opencv » Opencv » Version: 2.4.9.1
    cpe:2.3:a:opencv:opencv:2.4.9.1
  • Opencv » Opencv » Version: 3.0.0
    cpe:2.3:a:opencv:opencv:3.0.0
  • Opencv » Opencv » Version: 3.1.0
    cpe:2.3:a:opencv:opencv:3.1.0
  • Opencv » Opencv » Version: 3.2.0
    cpe:2.3:a:opencv:opencv:3.2.0
  • Opencv » Opencv » Version: 3.3.0
    cpe:2.3:a:opencv:opencv:3.3.0
  • Debian » Debian Linux » Version: 8.0
    cpe:2.3:o:debian:debian_linux:8.0
  • Debian » Debian Linux » Version: 9.0
    cpe:2.3:o:debian:debian_linux:9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved