📦

gd_graphics_library

Vendor: libgd

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 0 Remote Access

Total CVEs 5 Total Indexed

Avg. EPSS 7.65% Exploit Prob.

Latest CVE CVE-2009-3546 Oct 19

Security Vulnerability Index

Page 1 / 1

9.3 CVSS

CVE-2009-3546

The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: some of these details are obtained from third party information.

EPSS: 10.21%

Severity: HIGH

Oct 19, 2009

4.3 CVSS

CVE-2007-3472

Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact.

EPSS: 7.32%

Severity: MEDIUM

Jun 28, 2007

4.3 CVSS

CVE-2007-3473

Exploit Found

The gdImageCreateXbm function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors involving a gdImageCreate failure.

EPSS: 13.31%

Severity: MEDIUM

Jun 28, 2007

2.6 CVSS

CVE-2007-3474

Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before 2.0.35 have unspecified impact and user-assisted remote attack vectors.

EPSS: 2.54%

Severity: LOW

Jun 28, 2007

5.0 CVSS

CVE-2007-3477

The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allow attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value.

EPSS: 4.86%

Severity: MEDIUM

Jun 28, 2007

Displaying 5 of 5 Total Entries

Total 1 Sections