← back
CVE-2022-25308

CVE-2022-25308

EPSS 0.5%CWE-121
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Sep 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service.
Affected products
n/a · fribidi