CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-23706

A heap-based buffer overflow vulnerability in the function ok_jpg_decode_block_subsequent_scan() ok_jpg.c:1102 of ok-file-formats through 2020-06-26 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.7%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

Products affected by CVE-2020-23706

Ok-File-Formats Project » Ok-File-Formats » Version: N/A

cpe:2.3:a:ok-file-formats_project:ok-file-formats:-
Ok-File-Formats Project » Ok-File-Formats » Version: 2018-10-13

cpe:2.3:a:ok-file-formats_project:ok-file-formats:2018-10-13
Ok-File-Formats Project » Ok-File-Formats » Version: 2018-10-14

cpe:2.3:a:ok-file-formats_project:ok-file-formats:2018-10-14
Ok-File-Formats Project » Ok-File-Formats » Version: 2018-10-15

cpe:2.3:a:ok-file-formats_project:ok-file-formats:2018-10-15
Ok-File-Formats Project » Ok-File-Formats » Version: 2018-10-16

cpe:2.3:a:ok-file-formats_project:ok-file-formats:2018-10-16

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-23706

Products

Pricing

Contact Us