CVE-2023-31028

NVIDIA nvJPEG2000 Library for Windows and Linux contains a vulnerability where improper input validation might enable an attacker to use a specially crafted input file. A successful exploit of this vulnerability might lead to a partial denial of service.

CVSS v3 2.8 LOW

2.8^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.3 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://nvidia.custhelp.com/app/answers/detail/a_id/5517

Configurations

No configuration.

History

08 Apr 2024, 18:49

Type	Values Removed	Values Added
Summary		(es) La librería NVIDIA nvJPEG2000 para Windows y Linux contiene una vulnerabilidad en la que una validación de entrada incorrecta podría permitir a un atacante utilizar un archivo de entrada especialmente manipulado. Una explotación exitosa de esta vulnerabilidad podría provocar una denegación parcial de servicio.

05 Apr 2024, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-04-05 18:15

Updated : 2024-04-08 18:49

NVD link : CVE-2023-31028

Mitre link : CVE-2023-31028

CVE.ORG link : CVE-2023-31028

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

2.8 /10