CVE-2017-13317

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Jan 28, 2025

CWE ID 125

Summary

CVE-2017-13317 is a vulnerability affecting HeifDecoderImpl in HeifDecoderImpl.cpp. This issue involves a potential out-of-bounds read due to insufficient input validation. The consequences of this flaw are significant, as it can result in remote information disclosure. Notably, no additional execution privileges are required for exploitation, and user interaction is necessary to trigger the vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/WAMPJm
https://www.cve.org/CVERecord?id=CVE-2017-13317
https://nvd.nist.gov/vuln/detail/CVE-2017-13317

Back to Vulnerability Database

CVE-2017-13317

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations