CVE-2024-28574: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the…

medium6.2CVSS 3.1

AVLACLPRNUINSUCNINAH

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K format.

Affected

2 ranges

Vendor	Product	Version range	Fixed in
debian	freeimage	—	—
freeimage_project	freeimage	—	—

CVSS provenance

nvdv3.16.2MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

osv6.2MEDIUM