Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-8175

EPSS 0.22% · P44
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-8175

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
jpeg-js 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
jpeg-js是一款基于JavaScript的图像处理程序。 jpeg-js 0.4.0之前版本中存在资源管理错误漏洞。攻击者可借助特制的JPEG图像利用该漏洞造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-jpeg-js Fixed Version: 0.4.0 -

II. Public POCs for CVE-2020-8175

#POC DescriptionSource LinkShenlong Link
1An updated version of get-pixels that patches the CVE-2020-8175 security issue.https://github.com/knokbak/get-pixels-updatedPOC Details
2An updated version of save-pixels that patches the CVE-2020-8175 security issue.https://github.com/knokbak/save-pixels-updatedPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-8175

登录查看更多情报信息。

Same Patch Batch · n/a · 2020-07-24 · 21 CVEs total

CVE-2020-15932Overwolf 后置链接漏洞
CVE-2020-15778OpenSSH 操作系统命令注入漏洞
CVE-2020-15924Mida Solutions eFramework SQL注入漏洞
CVE-2020-15923Mida Solutions eFramework 路径遍历漏洞
CVE-2020-15922Mida Solutions eFramework 操作系统命令注入漏洞
CVE-2020-15921Mida Solutions eFramework 授权问题漏洞
CVE-2020-15920Mida Solutions eFramework 操作系统命令注入漏洞
CVE-2020-15919Mida Solutions eFramework 跨站脚本漏洞
CVE-2020-15918Mida Solutions eFramework 跨站脚本漏洞
CVE-2020-15860Parallels Remote Application Server 安全漏洞
CVE-2020-10614OSIsoft PI Vision 跨站脚本漏洞
CVE-2020-15945Lua 安全漏洞
CVE-2020-8207Citrix Systems Workspace App 授权问题漏洞
CVE-2020-8174Joyent Node.js 数字错误漏洞
CVE-2020-12812Fortinet FortiOS SSL VPN 授权问题漏洞
CVE-2020-10610多款OSIsoft产品代码问题漏洞
CVE-2020-10608多款OSIsoft产品数据伪造问题漏洞
CVE-2020-10606多款OSIsoft产品安全漏洞
CVE-2020-10602OSIsoft PI Data Archive 代码问题漏洞
CVE-2020-10604OSIsoft PI Data Archive 安全漏洞

IV. Related Vulnerabilities

Same product: jpeg-js
Same vendor: n/a
Same weakness: CWE-400

V. Comments for CVE-2020-8175

No comments yet

Leave a comment