← back
CVE-2020-21428

CVE-2020-21428

CVSS 3.3 LOWEPSS 0.4%CWE-120
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 3.3EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
22 Aug 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Buffer Overflow vulnerability in function LoadRGB in PluginDDS.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected products
n/a · n/a