Vulnerabilities > CVE-2018-20584

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
jasper-project
debian
oracle
nessus

Summary

JasPer 2.0.14 allows remote attackers to cause a denial of service (application hang) via an attempted conversion to the jp2 format.

Vulnerable Configurations

Part Description Count
Application
Jasper_Project
1
Application
Oracle
1
OS
Debian
1

Nessus

NASL familyGentoo Local Security Checks
NASL idGENTOO_GLSA-201908-03.NASL
descriptionThe remote host is affected by the vulnerability described in GLSA-201908-03 (JasPer: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in JasPer. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details. Workaround : There is no known workaround at this time.
last seen2020-06-01
modified2020-06-02
plugin id127561
published2019-08-12
reporterThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/127561
titleGLSA-201908-03 : JasPer: Multiple vulnerabilities