CVE-2022-39852

CVSS v3.1

8.0

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions libagifencoder.quram.so library prior to SMR Oct-2022 Release 1

Description A heap-based overflow vulnerability in the makeContactAGIF function of the libagifencoder.quram.so library allows an attacker to perform code execution.

Recommendations For versions prior to SMR Oct-2022 Release 1, update to SMR Oct-2022 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the makeContactAGIF function in the libagifencoder.quram.so library until a patch is available.

Fix

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-122

Related Identifiers

CVE-2022-39852

Affected Products

Libagifencoder.Quram.So

CVE-2022-39852

Weakness Enumeration

Related Identifiers

Affected Products

References · 4