Vulnerability Details CVE-2020-28840
Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead version 3.04, allows local attackers to execute arbitrary code and cause a denial of service (DoS).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 25.7%
CVSS Severity
CVSS v3 Score 7.8
References
- https://bugs.launchpad.net/ubuntu/+source/jhead/+bug/1900820
- https://github.com/F-ZhaoYang/jhead/security/advisories/GHSA-xh27-xwgj-gqw2
- https://github.com/Matthias-Wandel/jhead/commit/4827ed31c226dc5ed93603bd649e0e387a1778da
- https://github.com/Matthias-Wandel/jhead/issues/8
- https://bugs.launchpad.net/ubuntu/+source/jhead/+bug/1900820
- https://github.com/F-ZhaoYang/jhead/security/advisories/GHSA-xh27-xwgj-gqw2
- https://github.com/Matthias-Wandel/jhead/commit/4827ed31c226dc5ed93603bd649e0e387a1778da
- https://github.com/Matthias-Wandel/jhead/issues/8
Products affected by CVE-2020-28840
-
cpe:2.3:a:matthiaswandel:jhead:*