Description
A vulnerability was found in xiaozhuai imageinfo up to 3.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the file imageinfo.hpp. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. VDB-222362 is the identifier assigned to this vulnerability.
References (4)
Core 4
Core References
Third Party Advisory vdb-entry
technical-description
https://vuldb.com/?id.222362
Permissions Required, Third Party Advisory signature
permissions-required
https://vuldb.com/?ctiid.222362
Exploit, Third Party Advisory issue-tracking
https://github.com/xiaozhuai/imageinfo/issues/1
Exploit, Third Party Advisory exploit
https://github.com/10cksYiqiyinHangzhouTechnology/imageinfo_poc
Scores
CVSS v3
4.8
EPSS
0.0012
EPSS Percentile
30.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Details
CWE
CWE-120
Status
published
Products (1)
imageinfo_project/imageinfo
< 3.0.3
Published
Mar 06, 2023
Tracked Since
Feb 18, 2026