CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-0534

A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a crash (segmentation fault).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.7%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://github.com/michaelrsweet/htmldoc/commit/312f0f9c12f26fbe015cd0e6cefa40e4b99017d9
https://github.com/michaelrsweet/htmldoc/issues/463
https://lists.debian.org/debian-lts-announce/2022/02/msg00022.html
https://github.com/michaelrsweet/htmldoc/commit/312f0f9c12f26fbe015cd0e6cefa40e4b99017d9
https://github.com/michaelrsweet/htmldoc/issues/463
https://lists.debian.org/debian-lts-announce/2022/02/msg00022.html

Products affected by CVE-2022-0534

Htmldoc Project » Htmldoc » Version: 1.9.15

cpe:2.3:a:htmldoc_project:htmldoc:1.9.15
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-0534

Products

Pricing

Contact Us