How severe is CVE-2023-44709?

CVE-2023-44709 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-44709

Name: plutosvg
Author: sammycage

9.8CRITICAL

PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before was discovered to contain an integer overflow via the component plutosvg_load_from_memory.

Publicado: 12/14/2023Actualizado: 11/21/2024

Descripción

PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before was discovered to contain an integer overflow via the component plutosvg_load_from_memory.

Análisis IAImpulsado por IA

Productos Afectados

sammycageplutosvg

Referencias

https://gist.github.com/sunwithmoon/3f810c27d2e553f9d31bd7c50566f15b#file-cve-2023-44709
Third Party Advisory
https://github.com/sammycage/plutosvg/issues/7
ExploitIssue Tracking
https://gist.github.com/sunwithmoon/3f810c27d2e553f9d31bd7c50566f15b#file-cve-2023-44709
Third Party Advisory
https://github.com/sammycage/plutosvg/issues/7
ExploitIssue Tracking