ГлавнаяУязвимости → CVE-2022-4988
7.3высокая

CVE-2022-4988

Описание

Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries. Alien::FreeImage contains version 3.17.0 of the FreeImage library from 2017, which has known vulnerabilities such as CVE-2015-0852 and CVE-2025-65803. The library embeds other images libraries that also have known vulnerabilities.

CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://freeimage.sourceforge.io/https://github.com/kmx/alien-freeimage/issues/4https://github.com/kmx/alien-freeimage/issues/5https://metacpan.org/release/KMX/Alien-FreeImage-1.001/source/src/Sourcehttps://nvd.nist.gov/vuln/detail/CVE-2015-0852https://nvd.nist.gov/vuln/detail/CVE-2025-65803