Description
ImpulseAdventure JPEGsnoop version 1.7.5 is vulnerable to a division by zero in the JFIF decode handling resulting denial of service.
References (2)
Core 2
Core References
Patch x_refsource_confirm
https://github.com/ImpulseAdventure/JPEGsnoop/commit/b4e458612d4294e0cfe01dbf1c0b09a07a8133a4#diff-cf9182aecc9d630e8db2e0e35f1eec65
Release Notes x_refsource_confirm
https://www.impulseadventure.com/photo/jpeg-snoop-history.html
Scores
CVSS v3
7.5
EPSS
0.0140
EPSS Percentile
68.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-369
Status
published
Products (1)
impulseadventure/jpegsnoop
1.7.5
Published
Jan 25, 2018
Tracked Since
Feb 18, 2026