CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17334

An issue was discovered in libsvg2 through 2012-10-19. A stack-based buffer overflow in the svgGetNextPathField function in svg_string.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because a strncpy copy limit is miscalculated.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.1%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2018-17334

Libsvg2 Project » Libsvg2 » Version: 2012-10-10

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-10
Libsvg2 Project » Libsvg2 » Version: 2012-10-11

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-11
Libsvg2 Project » Libsvg2 » Version: 2012-10-12

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-12
Libsvg2 Project » Libsvg2 » Version: 2012-10-15

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-15
Libsvg2 Project » Libsvg2 » Version: 2012-10-16

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-16
Libsvg2 Project » Libsvg2 » Version: 2012-10-17

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-17
Libsvg2 Project » Libsvg2 » Version: 2012-10-18

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-18
Libsvg2 Project » Libsvg2 » Version: 2012-10-19

cpe:2.3:a:libsvg2_project:libsvg2:2012-10-19

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-17334

Products

Pricing

Contact Us