CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-45920

Xfig v3.2.8 was discovered to contain a NULL pointer dereference when calling XGetWMHints(). NOTE: this is disputed because it is not expected that an X application should continue to run when there is arbitrary anomalous behavior from the X server or window manager.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.1%

CVSS Severity

CVSS v3 Score 4.2

References

http://seclists.org/fulldisclosure/2024/Jan/48
https://sourceforge.net/p/mcj/tickets/155/
http://packetstormsecurity.com/files/176803/Xfig-3.2.8-Null-Pointer.html
http://seclists.org/fulldisclosure/2024/Jan/48
https://sourceforge.net/p/mcj/tickets/155/

Products affected by CVE-2023-45920

Xfig Project » Xfig » Version: 3.2.8

cpe:2.3:a:xfig_project:xfig:3.2.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-45920

Products

Pricing

Contact Us