CVE-2018-7637
First published: Fri Mar 02 2018(Updated: )
An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "16 colors" case, aka case 4.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cimg Cimg | =.220 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2018-7637.
What is the severity of CVE-2018-7637?
The severity of CVE-2018-7637 is high with a CVSS score of 7.8.
What is the affected software version of CVE-2018-7637?
The affected software version of CVE-2018-7637 is CImg v.220.
How does the vulnerability in CVE-2018-7637 occur?
The vulnerability in CVE-2018-7637 occurs due to a heap-based buffer over-read in the load_bmp function in CImg.h when loading a crafted bmp image.
Is there any fix available for CVE-2018-7637?
Yes, there are fixes available for CVE-2018-7637. Please refer to the provided references for more information.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/last-modified-date
- agent/severity
- agent/first-publish-date
- agent/event
- agent/description
- vendor/cimg
- canonical/cimg cimg
- version/cimg cimg/.220