CVE-2024-48858

EPSS 0.34%
Veröffentlicht 14.01.2025 20:15:28
Zuletzt bearbeitet 01.12.2025 18:06:16
Quelle secure@blackberry.com
CVE-Watchlists
Login
Unerledigt
Login

Vulnerabilities in TIFF and PCX Image Codecs Impact QNX Software Development Platform

Improper input validation in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 3 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Blackberry ≫ Qnx Software Development Platform Version7.0

Blackberry ≫ Qnx Software Development Platform Version7.1

Blackberry ≫ Qnx Software Development Platform Version8.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.34%	0.565

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
secure@blackberry.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1287 Improper Validation of Specified Type of Input

The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.

https://support.blackberry.com/pkb/s/article/140334

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-48858

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-48858

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-48858

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2024-48858