← Retour aux CVEs

CVE-2017-12652

CRITICAL

9.8

Description

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie7/10/2019

Derniere modification6/9/2025

Sourcenvd

Observations honeypot0

Produits affectes

libpng:libpngnetapp:active_iq_unified_manager

Faiblesses (CWE)

CWE-20CWE-20

References

http://www.securityfocus.com/bid/109269(cve@mitre.org)

https://github.com/glennrp/libpng/blob/df7e9dae0c4aac63d55361e35709c864fa1b8363/ANNOUNCE(cve@mitre.org)

https://github.com/pnggroup/libpng/commit/347538efbdc21b8df684ebd92d37400b3ce85d55(cve@mitre.org)

https://security.netapp.com/advisory/ntap-20220506-0003/(cve@mitre.org)

https://support.f5.com/csp/article/K88124225(cve@mitre.org)

https://support.f5.com/csp/article/K88124225?utm_source=f5support&utm_medium=RSS(cve@mitre.org)

http://www.securityfocus.com/bid/109269(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/glennrp/libpng/blob/df7e9dae0c4aac63d55361e35709c864fa1b8363/ANNOUNCE(af854a3a-2127-422b-91ae-364da2661108)

https://security.netapp.com/advisory/ntap-20220506-0003/(af854a3a-2127-422b-91ae-364da2661108)

https://support.f5.com/csp/article/K88124225(af854a3a-2127-422b-91ae-364da2661108)

https://support.f5.com/csp/article/K88124225?utm_source=f5support&amp%3Butm_medium=RSS(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.