Vulnerabilities > CVE-2022-25515 - Out-of-bounds Write vulnerability in Nothings STB Truetype.H 1.26
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |