Vulnerabilities > CVE-2018-20584

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nessus

NVD

Published: 2018-12-30

Updated: 2023-02-28

Summary

JasPer 2.0.14 allows remote attackers to cause a denial of service (application hang) via an attempted conversion to the jp2 format.

Part	Description	Count
Application	Jasper_Project Jasper Project Jasper 2.0.14	1
Application	Oracle Oracle Outside IN Technology 8.5.4	1
OS	Debian Debian Debian Linux 8.0	1

NASL family	Gentoo Local Security Checks
NASL id	GENTOO_GLSA-201908-03.NASL
description	The remote host is affected by the vulnerability described in GLSA-201908-03 (JasPer: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in JasPer. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details. Workaround : There is no known workaround at this time.
last seen	2020-06-01
modified	2020-06-02
plugin id	127561
published	2019-08-12
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/127561
title	GLSA-201908-03 : JasPer: Multiple vulnerabilities