Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2022-38266

Published: 09/09/2022 Updated: 18/12/2023
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Tesseract

Vulnerability Summary

An issue in the Leptonica linked library (v1.79.0) allows malicious users to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

tesseract project tesseract 5.0.0

leptonica leptonica

debian debian linux 10.0

Vendor Advisories

Red Hat:
Description The MITRE CVE dictionary describes this issue as: An issue in the Leptonica linked library (v1790) in Tesseract v500 allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file ...

References

CWE-369https://github.com/tesseract-ocr/tesseract/issues/3498https://github.com/DanBloomberg/leptonica/commit/f062b42c0ea8dddebdc6a152fd16152de215d614https://lists.debian.org/debian-lts-announce/2022/12/msg00018.htmlhttps://security.gentoo.org/glsa/202312-01https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2022-38266
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook