CVE-2021-33798
4.7
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
Summary
A null pointer dereference was found in libpano13, version libpano13-2.9.20. The flow allows attackers to cause a denial of service and potential code execute via a crafted file.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| libpano13 | libpano13 | 2.9.20 | affected |
Weaknesses
- CWE-476: CWE-476 NULL Pointer Dereference
ADP Enrichment
CVE Program Container
Additional References
- https://groups.google.com/u/1/g/hugin-ptx/c/gLtz2vweD74
- https://sourceforge.net/p/panotools/libpano13/ci/62aa7eed8fae5d8f247a2508a757f31000de386f/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://groups.google.com/u/1/g/hugin-ptx/c/gLtz2vweD74
- https://sourceforge.net/p/panotools/libpano13/ci/62aa7eed8fae5d8f247a2508a757f31000de386f/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.