Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2022-28042
stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.003
EPSS Ranking
55.6%
CVSS Severity
CVSS v3 Score
8.8
CVSS v2 Score
6.8
References
https://github.com/nothings/stb/issues/1289
https://github.com/nothings/stb/pull/1297
https://lists.debian.org/debian-lts-announce/2023/01/msg00045.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FXLM5XL77SNH4IPTSXOQD7XL4E2EMIN/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I4HXIWU5HBOADXZVMREHT4YTO5WVYXEQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MMBCMJGAZRQS55SNECUWZSC5URVLEZ5R/
https://github.com/nothings/stb/issues/1289
https://github.com/nothings/stb/pull/1297
https://lists.debian.org/debian-lts-announce/2023/01/msg00045.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FXLM5XL77SNH4IPTSXOQD7XL4E2EMIN/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I4HXIWU5HBOADXZVMREHT4YTO5WVYXEQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MMBCMJGAZRQS55SNECUWZSC5URVLEZ5R/
Products affected by CVE-2022-28042
Nothings
»
Stb Image.h
»
Version:
2.27
cpe:2.3:a:nothings:stb_image.h:2.27
Debian
»
Debian Linux
»
Version:
10.0
cpe:2.3:o:debian:debian_linux:10.0
Fedoraproject
»
Fedora
»
Version:
34
cpe:2.3:o:fedoraproject:fedora:34
Fedoraproject
»
Fedora
»
Version:
35
cpe:2.3:o:fedoraproject:fedora:35
Fedoraproject
»
Fedora
»
Version:
36
cpe:2.3:o:fedoraproject:fedora:36
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved