Vulnerability Details CVE-2018-17333
An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in svgStringToLength in svg_types.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because sscanf is misused.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-17333
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-10
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-11
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-12
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-15
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-16
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-17
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-18
-
cpe:2.3:a:libsvg2_project:libsvg2:2012-10-19