CVE-2023-31028

2.8LOW

Key Information

Vendor: Nvidia
Status: Nvjpeg2000 Library
Vendor: CVE Published:; 5 April 2024

Summary

NVIDIA nvJPEG2000 Library for Windows and Linux contains a vulnerability where improper input validation might enable an attacker to use a specially crafted input file. A successful exploit of this vulnerability might lead to a partial denial of service.

Affected Version(s)

nvJPEG2000 Library = All versions prior to nvJPEG2000 v0.7.x

CVSS V3.1

Score:

2.8

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Risk change from: null to: 2.8 - (LOW)
Jul 5, 2024
Vulnerability published.
Apr 5, 2024

Collectors

NVD DatabaseMitre Database