Memory Object Initialization Vulnerability in Libraw's phase_one_correct Function

CVE-2015-8367 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object initialization.

Learn more about our Web Application Penetration Testing UK.