CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38216

An integer overflow exists in Mapbox's closed source gl-native library prior to version 10.6.1, which is bundled with multiple Mapbox products including open source libraries. The overflow is caused by large image height and width values when creating a new Image and allows for out of bounds writes, potentially crashing the Mapbox process.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.9%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2022-38216

Mapbox » Maps Software Development Kit » Version: N/A

cpe:2.3:a:mapbox:maps_software_development_kit:-
Mapbox » Maps Software Development Kit » Version: 10.0.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.0.0
Mapbox » Maps Software Development Kit » Version: 10.0.1

cpe:2.3:a:mapbox:maps_software_development_kit:10.0.1
Mapbox » Maps Software Development Kit » Version: 10.0.2

cpe:2.3:a:mapbox:maps_software_development_kit:10.0.2
Mapbox » Maps Software Development Kit » Version: 10.1.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.1.0
Mapbox » Maps Software Development Kit » Version: 10.1.1

cpe:2.3:a:mapbox:maps_software_development_kit:10.1.1
Mapbox » Maps Software Development Kit » Version: 10.1.2

cpe:2.3:a:mapbox:maps_software_development_kit:10.1.2
Mapbox » Maps Software Development Kit » Version: 10.2.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.2.0
Mapbox » Maps Software Development Kit » Version: 10.3.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.3.0
Mapbox » Maps Software Development Kit » Version: 10.4.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.4.0
Mapbox » Maps Software Development Kit » Version: 10.4.1

cpe:2.3:a:mapbox:maps_software_development_kit:10.4.1
Mapbox » Maps Software Development Kit » Version: 10.4.2

cpe:2.3:a:mapbox:maps_software_development_kit:10.4.2
Mapbox » Maps Software Development Kit » Version: 10.4.3

cpe:2.3:a:mapbox:maps_software_development_kit:10.4.3
Mapbox » Maps Software Development Kit » Version: 10.4.4

cpe:2.3:a:mapbox:maps_software_development_kit:10.4.4
Mapbox » Maps Software Development Kit » Version: 10.5.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.5.0
Mapbox » Maps Software Development Kit » Version: 10.6.0

cpe:2.3:a:mapbox:maps_software_development_kit:10.6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38216

Products

Pricing

Contact Us