CVE Daily

CVE-2022-32649

In jpeg, there is a possible use after free due to a logic error. This could lea...

Medium CVSS 6.7

Overview

In jpeg, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07225840; Issue ID: ALPS07225840.

CWE: CWE-131 Published: 2023-01-03T21:15:12.127
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.7 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags