CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-14373

An issue was discovered in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a heap-based buffer over-read in libpng via a crafted flif file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://github.com/FLIF-hub/FLIF/issues/541
https://github.com/FLIF-hub/FLIF/issues/541

Products affected by CVE-2019-14373

Flif » Flif » Version: 0.3

cpe:2.3:a:flif:flif:0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14373

Products

Pricing

Contact Us