Vulnerability Details CVE-2018-18581
An issue has been found in LuPng through 2017-03-10. It is a heap-based buffer over-read in internalPrintf in miniz/lupng.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- https://github.com/grandnew/software-vulnerabilities/tree/master/LuPng#heap-buffer-overflow-in-function-internalprintf
- https://github.com/jansol/LuPng/issues/7
- https://github.com/grandnew/software-vulnerabilities/tree/master/LuPng#heap-buffer-overflow-in-function-internalprintf
- https://github.com/jansol/LuPng/issues/7
Products affected by CVE-2018-18581
-
cpe:2.3:a:lupng_project:lupng:-
-
cpe:2.3:a:lupng_project:lupng:2017-03-10