How severe is CVE-2023-44709?

CVE-2023-44709 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-44709

Name: plutosvg
Author: sammycage

9.8CRITICAL

PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before was discovered to contain an integer overflow via the component plutosvg_load_from_memory.

Published: 12/14/2023Updated: 11/21/2024

Description

PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before was discovered to contain an integer overflow via the component plutosvg_load_from_memory.

AI AnalysisPowered by AI

Affected Products

sammycageplutosvg

References

https://gist.github.com/sunwithmoon/3f810c27d2e553f9d31bd7c50566f15b#file-cve-2023-44709
Third Party Advisory
https://github.com/sammycage/plutosvg/issues/7
ExploitIssue Tracking
https://gist.github.com/sunwithmoon/3f810c27d2e553f9d31bd7c50566f15b#file-cve-2023-44709
Third Party Advisory
https://github.com/sammycage/plutosvg/issues/7
ExploitIssue Tracking