CVE-2024-32036

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Apr 15, 2024

Updated: Apr 16, 2024

CWE ID 226

Summary

CVE-2024-32036 is a data leakage vulnerability affecting ImageSharp, a widely-used 2D graphics API. The flaw is located in the JPEG and TGA decoders, where an attacker can pass specially crafted image files to induce the disclosure of sensitive information from other parts of the software. The vulnerability can potentially lead to a serious data breach. It has been addressed in ImageSharp versions 3.1.4 and 2.1.8 through patch releases.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vaF7Ko
https://www.cve.org/CVERecord?id=CVE-2024-32036
https://nvd.nist.gov/vuln/detail/CVE-2024-32036

Back to Vulnerability Database

CVE-2024-32036

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations