CVE-2025-27796 - CERT CVE

  1. CVE-2025-27796

ID CVE-2025-27796
Sažetak ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob.
Reference
CVSS
Base: 4.5
Impact: 2.7
Exploitability:1.4
Pristup
VektorSloženostAutentikacija
LOCAL HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE LOW LOW
CVSS vektor CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:L
Zadnje važnije ažuriranje 07-03-2025 - 22:15
Objavljeno 07-03-2025 - 06:15