Vulnerabilities > CVE-2020-35538 - NULL Pointer Dereference vulnerability in Libjpeg-Turbo 2.0.5

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
libjpeg-turbo
CWE-476
NVD
Published: 2022-08-31
Updated: 2022-09-20

Summary

A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.

Vulnerable Configurations

Part Description Count
Application
Libjpeg-Turbo
1

Common Weakness Enumeration (CWE)

References