Vulnerabilities > CVE-2018-20845 - Divide By Zero vulnerability in Uclouvain Openjpeg

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

uclouvain

CWE-369

NVD

Published: 2019-06-26

Updated: 2023-02-27

Summary

Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (application crash).

Vulnerable Configurations

Part	Description	Count
Application	Uclouvain Uclouvain Openjpeg - Uclouvain Openjpeg 1.0 Uclouvain Openjpeg 1.1 Uclouvain Openjpeg 1.2 Uclouvain Openjpeg 1.3 Uclouvain Openjpeg 1.4 Uclouvain Openjpeg 1.5 Uclouvain Openjpeg 1.5.1 Uclouvain Openjpeg 1.5.2 Uclouvain Openjpeg 2.0 Uclouvain Openjpeg 2.0.0 Uclouvain Openjpeg 2.0.1 Uclouvain Openjpeg 2.1 Uclouvain Openjpeg 2.1.0 Uclouvain Openjpeg 2.1.1 Uclouvain Openjpeg 2.1.2 Uclouvain Openjpeg 2.2.0	17

Common Weakness Enumeration (CWE)

CWE-369 - Divide By Zero

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References