VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-wv1g-n5xx-7ycn

Essentials
Severities (60)
References (30)
Severity details (50)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-wv1g-n5xx-7ycn
Aliases	CVE-2011-3045
Summary	Integer Overflow or Wraparound Integer signedness error in the png_inflate function in pngrutil.c in libpng beta01, as used in Google Chrome and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
Status	Published
Exploitability	0.5
Weighted Severity	7.9
Risk	4.0
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-190	Integer Overflow or Wraparound
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
cvssv3.1	8.8	http://code.google.com/p/chromium/issues/detail?id=116162
ssvc	Track*	http://code.google.com/p/chromium/issues/detail?id=116162
cvssv3.1	8.8	http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html
ssvc	Track*	http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html
cvssv3.1	8.8	http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b
ssvc	Track*	http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b
cvssv3.1	8.8	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html
ssvc	Track*	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html
cvssv3.1	8.8	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html
ssvc	Track*	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html
cvssv3.1	8.8	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html
ssvc	Track*	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html
cvssv3.1	8.8	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html
ssvc	Track*	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html
cvssv3.1	8.8	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html
ssvc	Track*	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html
cvssv3.1	8.8	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html
ssvc	Track*	http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html
cvssv3.1	8.8	http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html
ssvc	Track*	http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html
cvssv3.1	8.8	http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html
ssvc	Track*	http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html
cvssv3.1	8.8	http://rhn.redhat.com/errata/RHSA-2012-0407.html
ssvc	Track*	http://rhn.redhat.com/errata/RHSA-2012-0407.html
cvssv3.1	8.8	http://rhn.redhat.com/errata/RHSA-2012-0488.html
ssvc	Track*	http://rhn.redhat.com/errata/RHSA-2012-0488.html
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
epss	0.04462	https://api.first.org/data/v1/epss?cve=CVE-2011-3045
cvssv3.1	8.8	https://bugzilla.redhat.com/show_bug.cgi?id=799000
ssvc	Track*	https://bugzilla.redhat.com/show_bug.cgi?id=799000
cvssv3.1	8.8	http://secunia.com/advisories/48320
ssvc	Track*	http://secunia.com/advisories/48320
cvssv3.1	8.8	http://secunia.com/advisories/48485
ssvc	Track*	http://secunia.com/advisories/48485
cvssv3.1	8.8	http://secunia.com/advisories/48512
ssvc	Track*	http://secunia.com/advisories/48512
cvssv3.1	8.8	http://secunia.com/advisories/48554
ssvc	Track*	http://secunia.com/advisories/48554
cvssv3.1	8.8	http://secunia.com/advisories/49660
ssvc	Track*	http://secunia.com/advisories/49660
cvssv3.1	8.8	http://security.gentoo.org/glsa/glsa-201206-15.xml
ssvc	Track*	http://security.gentoo.org/glsa/glsa-201206-15.xml
cvssv3.1	8.8	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763
ssvc	Track*	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763
cvssv3.1	8.8	http://src.chromium.org/viewvc/chrome?view=rev&revision=125311
ssvc	Track*	http://src.chromium.org/viewvc/chrome?view=rev&revision=125311
cvssv3.1	8.8	http://www.debian.org/security/2012/dsa-2439
ssvc	Track*	http://www.debian.org/security/2012/dsa-2439
cvssv3.1	8.8	http://www.mandriva.com/security/advisories?name=MDVSA-2012:033
ssvc	Track*	http://www.mandriva.com/security/advisories?name=MDVSA-2012:033
cvssv3.1	8.8	http://www.securitytracker.com/id?1026823
ssvc	Track*	http://www.securitytracker.com/id?1026823

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3045.json
		https://api.first.org/data/v1/epss?cve=CVE-2011-3045
075424.html		http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html
075619.html		http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html
075981.html		http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html
075987.html		http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html
076461.html		http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html
076731.html		http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html
48320		http://secunia.com/advisories/48320
48485		http://secunia.com/advisories/48485
48512		http://secunia.com/advisories/48512
48554		http://secunia.com/advisories/48554
49660		http://secunia.com/advisories/49660
799000		https://bugzilla.redhat.com/show_bug.cgi?id=799000
advisories?name=MDVSA-2012:033		http://www.mandriva.com/security/advisories?name=MDVSA-2012:033
chrome?view=rev&revision=125311		http://src.chromium.org/viewvc/chrome?view=rev&revision=125311
CVE-2011-3045		https://nvd.nist.gov/vuln/detail/CVE-2011-3045
detail?id=116162		http://code.google.com/p/chromium/issues/detail?id=116162
dsa-2439		http://www.debian.org/security/2012/dsa-2439
GLSA-201206-15		https://security.gentoo.org/glsa/201206-15
glsa-201206-15.xml		http://security.gentoo.org/glsa/glsa-201206-15.xml
id?1026823		http://www.securitytracker.com/id?1026823
libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b		http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b
msg00000.html		http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html
msg00051.html		http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html
oval%3Aorg.mitre.oval%3Adef%3A14763		https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763
RHSA-2012:0407		https://access.redhat.com/errata/RHSA-2012:0407
RHSA-2012-0407.html		http://rhn.redhat.com/errata/RHSA-2012-0407.html
stable-channel-update_21.html		http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html
USN-1402-1		https://usn.ubuntu.com/1402-1/

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://code.google.com/p/chromium/issues/detail?id=116162

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://code.google.com/p/chromium/issues/detail?id=116162

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commit%3Bh=a8c319a2b281af68f7ca0e2f9a28ca57b44ceb2b

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075424.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075619.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075981.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/075987.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076461.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.fedoraproject.org/pipermail/package-announce/2012-March/076731.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00000.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://lists.opensuse.org/opensuse-updates/2012-03/msg00051.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://rhn.redhat.com/errata/RHSA-2012-0407.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://rhn.redhat.com/errata/RHSA-2012-0407.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://rhn.redhat.com/errata/RHSA-2012-0488.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://rhn.redhat.com/errata/RHSA-2012-0488.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://bugzilla.redhat.com/show_bug.cgi?id=799000

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at https://bugzilla.redhat.com/show_bug.cgi?id=799000

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://secunia.com/advisories/48320

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://secunia.com/advisories/48320

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://secunia.com/advisories/48485

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://secunia.com/advisories/48485

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://secunia.com/advisories/48512

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://secunia.com/advisories/48512

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://secunia.com/advisories/48554

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://secunia.com/advisories/48554

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://secunia.com/advisories/49660

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://secunia.com/advisories/49660

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://security.gentoo.org/glsa/glsa-201206-15.xml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://security.gentoo.org/glsa/glsa-201206-15.xml

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14763

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://src.chromium.org/viewvc/chrome?view=rev&revision=125311

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://src.chromium.org/viewvc/chrome?view=rev&revision=125311

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.debian.org/security/2012/dsa-2439

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://www.debian.org/security/2012/dsa-2439

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.mandriva.com/security/advisories?name=MDVSA-2012:033

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://www.mandriva.com/security/advisories?name=MDVSA-2012:033

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.securitytracker.com/id?1026823

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-06-09T15:35:38Z/ Found at http://www.securitytracker.com/id?1026823

Exploit Prediction Scoring System (EPSS)

Percentile	0.89031
EPSS Score	0.04462
Published At	April 1, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T12:46:46.718175+00:00	GitLab Importer	Import	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libpng/CVE-2011-3045.yml	38.0.0