← volver
CVE-2022-38216

CVE-2022-38216

EPSS 0.7%CWE-190
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
16 ago 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An integer overflow exists in Mapbox's closed source gl-native library prior to version 10.6.1, which is bundled with multiple Mapbox products including open source libraries. The overflow is caused by large image height and width values when creating a new Image and allows for out of bounds writes, potentially crashing the Mapbox process.
Productos afectados
Mapbox · Mapbox

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/mapbox/mapbox-maps-android/releases/tag/android-v10.6.1