Show filters
15 Total Results
Displaying 11-15 of 15
Sort by:
Attacker Value
Unknown

CVE-2020-36328

Disclosure Date: May 21, 2021 (last updated February 22, 2025)
A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2018-25011

Disclosure Date: May 21, 2021 (last updated February 22, 2025)
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2020-36332

Disclosure Date: May 21, 2021 (last updated February 22, 2025)
A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2016-9969

Disclosure Date: May 23, 2019 (last updated November 27, 2024)
In libwebp 0.5.1, there is a double free bug in libwebpmux.
0
0
Attacker Value
Unknown

CVE-2016-9085

Disclosure Date: February 03, 2017 (last updated November 08, 2023)
Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0
View More Topics  < Previous