Vulnerabilities > CVE-2017-14232 - Resource Management Errors vulnerability in multiple products

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
flif
jasper-project
CWE-399
NVD
Published: 2019-08-15
Updated: 2019-10-22

Summary

The read_chunk function in flif-dec.cpp in Free Lossless Image Format (FLIF) 0.3 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted flif file.

Vulnerable Configurations

Part Description Count
Application
Flif
1
Application
Jasper_Project
52

Common Weakness Enumeration (CWE)

References