Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2016-3616
HistoryFeb 13, 2017 - 6:59 p.m.

CVE-2016-3616

2017-02-1318:59:00
CWE-476
mitre
web.nvd.nist.gov
117
cve-2016-3616
libjpeg
denial of service
null pointer dereference
application crash
arbitrary code
nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0.021

Percentile

89.3%

JSON

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file.

Affected configurations

Nvd
Node
libjpeg-turbolibjpeg-turboMatch7.4
Node
redhatenterprise_linuxMatch7.4
Node
debiandebian_linuxMatch8.0
Node
canonicalubuntu_linuxMatch12.04esm
OR
canonicalubuntu_linuxMatch14.04lts
OR
canonicalubuntu_linuxMatch16.04lts
OR
canonicalubuntu_linuxMatch18.04lts
OR
canonicalubuntu_linuxMatch18.10
VendorProductVersionCPE
libjpeg-turbolibjpeg-turbo7.4cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:7.4:*:*:*:*:*:*:*
redhatenterprise_linux7.4cpe:2.3:o:redhat:enterprise_linux:7.4:*:*:*:*:*:*:*
debiandebian_linux8.0cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
canonicalubuntu_linux12.04cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
canonicalubuntu_linux14.04cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
canonicalubuntu_linux16.04cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
canonicalubuntu_linux18.04cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
canonicalubuntu_linux18.10cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

Related

nvd 1
prion 1
ubuntucve 3
veracode 1
ibm 1
cvelist 1
debiancve 1
nessus 24
openvas 7
photon 2
f5 1
debian 1
osv 2
amazon 2
centos 1
oraclelinux 1
ubuntu 3
redhat 1
cloudfoundry 1
nvd
nvd
CVE-2016-3616
2017-02-13 18:59:00
prion
prion
Null pointer dereference
2017-02-13 18:59:00
ubuntucve
ubuntucve
CVE-2016-3616
2017-02-13 00:00:00
CVE-2018-11213
2018-05-16 00:00:00
CVE-2018-11214
2018-05-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-08-07 03:00:04
ibm
ibm
Security Bulletin: IBM Security Privileged Identity Manager is affected by a security vulnerability
2021-08-04 17:51:11
cvelist
cvelist
CVE-2016-3616
2017-02-13 18:00:00
debiancve
debiancve
CVE-2016-3616
2017-02-13 18:59:00
nessus
nessus
RHEL 7 : libjpeg (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : libjpeg (Unpatched Vulnerability)
2024-06-03 00:00:00
EulerOS 2.0 SP2 : libjpeg-turbo (EulerOS-SA-2019-2407)
2019-12-10 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libjpeg-turbo (EulerOS-SA-2019-1628)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for libjpeg-turbo (EulerOS-SA-2019-2407)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for libjpeg-turbo (EulerOS-SA-2019-2251)
2020-01-23 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0327
2020-09-22 00:00:00
Important Photon OS Security Update - PHSA-2020-0327
2020-09-22 00:00:00
f5
f5
K23406572 : libjpeg vulnerabilities CVE-2016-3616 CVE-2018-11213 CVE-2018-11214 CVE-2018-11813 CVE-2018-14498
2022-02-17 00:00:00
debian
debian
[SECURITY] [DLA 1638-1] libjpeg-turbo security update
2019-01-22 22:18:58
osv
osv
libjpeg-turbo - security update
2019-01-22 00:00:00
libjpeg9 vulnerabilities
2022-03-23 12:40:00
amazon
amazon
Medium: libjpeg-turbo
2019-11-04 22:23:00
Medium: libjpeg-turbo
2019-09-13 22:58:00
centos
centos
libjpeg, turbojpeg security update
2019-08-30 03:16:23
oraclelinux
oraclelinux
libjpeg-turbo security update
2019-08-13 00:00:00
ubuntu
ubuntu
libjpeg-turbo vulnerabilities
2018-07-10 00:00:00
libjpeg-turbo vulnerabilities
2018-07-09 00:00:00
libjpeg9 vulnerabilities
2022-03-23 00:00:00
redhat
redhat
(RHSA-2019:2052) Moderate: libjpeg-turbo security update
2019-08-06 07:55:58
cloudfoundry
cloudfoundry
USN-3706-1: libjpeg-turbo vulnerabilities | Cloud Foundry
2018-07-19 00:00:00

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0.021

Percentile

89.3%

JSON
Related for CVE-2016-3616
nvd1prion1ubuntucve3veracode1ibm1cvelist1debiancve1nessus24openvas7photon2f51debian1osv2amazon2centos1oraclelinux1ubuntu3redhat1cloudfoundry1