Out-of-Bounds Read Vulnerability in libwebp: Threats to Data Confidentiality and Service Availability

Out-of-Bounds Read Vulnerability in libwebp: Threats to Data Confidentiality and Service Availability

CVE-2020-36330 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.

Learn more about our Web App Pen Testing.