CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-23319

A segmentation fault during PCF file parsing in pcf2bdf versions >=1.05 allows an attacker to trigger a program crash via a specially crafted PCF font file. This crash affects the availability of the software and dependent downstream components.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.6%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

https://github.com/ganaware/pcf2bdf
https://github.com/ganaware/pcf2bdf/issues/5
https://github.com/ganaware/pcf2bdf
https://github.com/ganaware/pcf2bdf/issues/5

Products affected by CVE-2022-23319

Pcf2bdf Project » Pcf2bdf » Version: 1.04

cpe:2.3:a:pcf2bdf_project:pcf2bdf:1.04
Pcf2bdf Project » Pcf2bdf » Version: 1.05

cpe:2.3:a:pcf2bdf_project:pcf2bdf:1.05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23319

Products

Pricing

Contact Us