CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-16663

In sam2p 0.49.4, there are integer overflows (with resultant heap-based buffer overflows) in input-bmp.ci in the function ReadImage, because "width * height" multiplications occur unsafely.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.6%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://github.com/pts/sam2p/issues/16
https://lists.debian.org/debian-lts-announce/2017/11/msg00031.html
https://github.com/pts/sam2p/issues/16
https://lists.debian.org/debian-lts-announce/2017/11/msg00031.html

Products affected by CVE-2017-16663

Sam2p Project » Sam2p » Version: 0.49.4

cpe:2.3:a:sam2p_project:sam2p:0.49.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16663

Products

Pricing

Contact Us