CVE-2015-7700

Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via…

mitre·CWE-415·Published 2017-08-31

CVSS

—

EPSS

0.02

KEV

Exploits

cve.orgen

154 chars

Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via unknown vectors.

NVDen

154 chars

Double-free vulnerability in the sPLT chunk structure and png.c in pngcrush before 1.7.87 allows attackers to have unspecified impact via unknown vectors.

NVDes

256 chars

Existe una vulnerabilidad de doble liberación (double-free) en la estructura de elementos de código sPLT y en png.c en versiones pngcrush anteriores a la 1.7.87 que permite que los atacantes causen un impacto no especificado mediante vectores no conocidos.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.0	Primary	NVD	9.8	3.9	5.9	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H