CVE-2022-25308: CVE-2022-25308

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-25308

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

栈缓冲区溢出

Source: NVD (National Vulnerability Database)

Vulnerability Title

fribidi 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

fribidi是一款Unicode双向算法的开源实现。 fribidi存在安全漏洞，该漏洞源于FriBidi错误地处理了输入字符串导致内存损坏。攻击者利用该漏洞导致FriBidi崩溃，导致拒绝服务，或可能执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	fribidi	Fixed in v1.0.12	-

II. Public POCs for CVE-2022-25308

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-25308

Please Login to view more intelligence information

https://access.redhat.com/security/cve/CVE-2022-25308x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=2047890x_refsource_MISC
https://github.com/fribidi/fribidi/issues/181x_refsource_MISC
https://github.com/fribidi/fribidi/pull/184x_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2022-25308

IV. Related Vulnerabilities

Same product: fribidi

Same vendor: n/a

Same weakness: CWE-121

V. Comments for CVE-2022-25308

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2022-25308

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-25308

III. Intelligence Information for CVE-2022-25308

IV. Related Vulnerabilities

V. Comments for CVE-2022-25308

Leave a comment