Lucene search
HistoryMar 06, 2023 - 11:15 p.m.
CVE-2022-3857
cve-2022-3857
libpng
image vulnerability
segmentation fault
denial of service
nvd
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
5.3
Confidence
High
EPSS
0.001
Percentile
19.1%
A flaw was found in libpng 1.6.38. A crafted PNG image can lead to a segmentation fault and denial of service in png_setup_paeth_row() function.
Affected configurations
Node
libpnglibpngRange≤1.6.38
CNA Affected
[
{
"vendor": "n/a",
"product": "libpng",
"versions": [
{
"version": "Found in libpng 1.6.38",
"status": "affected"
}
]
}
]Related
osv
osv
CVE-2022-3857
2023-03-06 23:15:11
cbl_mariner
cbl_mariner
CVE-2022-3857 affecting package tensorflow for versions less than 2.16.1-1
2024-04-17 22:02:46
CVE-2022-3857 affecting package syslinux 6.04-10
2024-07-22 16:13:32
CVE-2022-3857 affecting package qt5-qtbase 5.12.11-7
2024-07-22 16:13:28
prion
prion
Design/Logic Flaw
2023-03-06 23:15:00
nvd
nvd
CVE-2022-3857
2023-03-06 23:15:11
nessus
nessus
RHEL 9 : libpng (Unpatched Vulnerability)
2024-06-03 00:00:00
CBL Mariner 2.0 Security Update: tensorflow / libpng (CVE-2022-3857)
2024-07-11 00:00:00
RHEL 7 : libpng (Unpatched Vulnerability)
2024-05-11 00:00:00
alpinelinux
alpinelinux
CVE-2022-3857
2023-03-06 23:15:00
redhatcve
redhatcve
CVE-2022-3857
2022-11-14 14:56:14
debiancve
debiancve
CVE-2022-3857
1976-01-01 00:00:00
ubuntucve
ubuntucve
CVE-2022-3857
2023-03-06 00:00:00
cvelist
cvelist
CVE-2022-3857
2023-03-06 00:00:00
avleonov
avleonov
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
5.3
Confidence
High
EPSS
0.001
Percentile
19.1%
Related for CVE-2022-3857