CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-12447

The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.8 and other products, has an integer overflow that leads to a heap-based buffer overflow and remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.7%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://drive.google.com/open?id=1J3hTt8XHz7u7QDSNYxEuwFZTO6Baggl0
https://github.com/ebel34/bpg-web-encoder/issues/2
https://drive.google.com/open?id=1J3hTt8XHz7u7QDSNYxEuwFZTO6Baggl0
https://github.com/ebel34/bpg-web-encoder/issues/2

Products affected by CVE-2018-12447

Libbpg Project » Libbpg » Version: 0.9.8

cpe:2.3:a:libbpg_project:libbpg:0.9.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-12447

Products

Pricing

Contact Us