Sign In

CVE-2024-24792

SOURCE - github

Summary

Parsing a corrupt or malicious image with invalid color indices can cause a panic.

EPSS Score: 0.00045 (0.161)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-noinfo

SOURCE - github

CWE-248

Uncaught Exception

Sources (9)

Impacted images

GitHub

CREATED

UPDATED

SOURCE IDGHSA-9phm-fm57-rhg8
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-248

CVSS SCORE

N/Amedium
PackageTypeOS NameOS VersionAffected RangesFix Versions
golang.org/x/imagegolang--<0.18.00.18.0

Severity and metrics

No CVSS data available from this source.

NIST

CREATED

UPDATED

SOURCE IDCVE-2024-24792
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)
CWE-noinfo
RATING UNAVAILABLE FROM SOURCE

Debian

CREATED

UPDATED

SOURCE IDCVE-2024-24792
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE

Ubuntu

CREATED

UPDATED

SOURCE IDCVE-2024-24792
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium

GoLang

CREATED

UPDATED

SOURCE IDGO-2024-2937
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE

Chainguard

CREATED

UPDATED

SOURCE ID

CGA-3797-x2q6-6f92

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE

Chainguard

CREATED

UPDATED

SOURCE ID

CGA-wqr7-66c4-fq65

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE

Chainguard

CREATED

UPDATED

SOURCE ID

CGA-vm7g-3xvm-pw5p

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE

Chainguard

CREATED

UPDATED

SOURCE ID

CGA-ghrp-j9wv-h896

EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE