Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7.5
CVSSv3
CVE-2022-45199
Published: 14/11/2022 Updated: 10/01/2023
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Python
Vulnerability Summary
Pillow prior to 9.3.0 allows denial of service via SAMPLESPERPIXEL.
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
python pillow
Vendor Advisories
Debian CVElist Bug Report Logs: pillow: CVE-2022-45199: Limit SAMPLESPERPIXEL to avoid runtime DOS
Debian Bug report logs - #1024512 pillow: CVE-2022-45199: Limit SAMPLESPERPIXEL to avoid runtime DOS Package: src:pillow; Maintainer for src:pillow is Matthias Klose <doko@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 20 Nov 2022 20:06:02 UTC Severity: important Tags: security, upstrea ...
Palo Alto Networks Security Advisory: PAN-SA-2024-0001 Informational Bulletin: Impact of OSS CVEs in PAN-OS
PAN-SA-2024-0001 Informational Bulletin: Impact of OSS CVEs in PAN-OS ...
References
CWE-400
https://github.com/python-pillow/Pillow/pull/6700
https://bugs.gentoo.org/878769
https://github.com/python-pillow/Pillow/releases/tag/9.3.0
https://github.com/python-pillow/Pillow/commit/2444cddab2f83f28687c7c20871574acbb6dbcf3
https://security.gentoo.org/glsa/202211-10
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024512
https://nvd.nist.gov
https://security.paloaltonetworks.com/PAN-SA-2024-0001
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started