VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
rhas	Moderate	https://access.redhat.com/errata/RHSA-2008:0146
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.08046	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.11069	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.11069	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.11069	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.12479	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.16780	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.27750	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.27750	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.27750	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
epss	0.31849	https://api.first.org/data/v1/epss?cve=CVE-2007-3472
rhbs	medium	https://bugzilla.redhat.com/show_bug.cgi?id=276751
cvssv2	4.3	https://nvd.nist.gov/vuln/detail/CVE-2007-3472
archlinux	Critical	https://security.archlinux.org/AVG-16

System

Score

Found at

rhas

Moderate

https://access.redhat.com/errata/RHSA-2008:0146

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.08046

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.11069

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.11069

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.11069

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.12479

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.16780

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.27750

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.27750

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.27750

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

epss

0.31849

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

rhbs

medium

https://bugzilla.redhat.com/show_bug.cgi?id=276751

cvssv2

4.3

https://nvd.nist.gov/vuln/detail/CVE-2007-3472

archlinux

Critical

https://security.archlinux.org/AVG-16

Reference id

Reference type

URL

ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/gd-2.0.35-i486-1_slack11.0.tgz

http://bugs.libgd.org/?do=details&task_id=89

http://fedoranews.org/updates/FEDORA-2007-205.shtml

http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052848.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052854.html

http://osvdb.org/37745

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3472.json

https://api.first.org/data/v1/epss?cve=CVE-2007-3472

https://bugzilla.redhat.com/show_bug.cgi?id=277421

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3472

http://secunia.com/advisories/25855

http://secunia.com/advisories/25860

http://secunia.com/advisories/26272

http://secunia.com/advisories/26390

http://secunia.com/advisories/26415

http://secunia.com/advisories/26467

http://secunia.com/advisories/26663

http://secunia.com/advisories/26766

http://secunia.com/advisories/26856

http://secunia.com/advisories/29157

http://secunia.com/advisories/30168

http://secunia.com/advisories/42813

http://security.gentoo.org/glsa/glsa-200708-05.xml

http://security.gentoo.org/glsa/glsa-200711-34.xml

http://security.gentoo.org/glsa/glsa-200805-13.xml

https://exchange.xforce.ibmcloud.com/vulnerabilities/35108

https://issues.rpath.com/browse/RPL-1643

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11067

http://www.libgd.org/ReleaseNote020035

http://www.mandriva.com/security/advisories?name=MDKSA-2007:153

http://www.mandriva.com/security/advisories?name=MDKSA-2007:164

http://www.novell.com/linux/security/advisories/2007_15_sr.html

http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00311.html

http://www.redhat.com/support/errata/RHSA-2008-0146.html

http://www.securityfocus.com/archive/1/478796/100/0/threaded

http://www.securityfocus.com/bid/24651

http://www.secweb.se/en/advisories/gd-gdimagecreatetruecolor-integer-overflow/

http://www.trustix.org/errata/2007/0024/

http://www.vupen.com/english/advisories/2007/2336

http://www.vupen.com/english/advisories/2011/0022

276751

https://bugzilla.redhat.com/show_bug.cgi?id=276751

ASA-201701-1

https://security.archlinux.org/ASA-201701-1

AVG-16

https://security.archlinux.org/AVG-16

cpe:2.3:a:libgd:gd_graphics_library:2.0.33:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.33:*:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.34:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:*:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc1:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc1:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc2:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.34:rc2:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc1:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc1:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc2:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc2:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc3:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc3:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc4:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:2.0.35:rc4:*:*:*:*:*:*

cpe:2.3:a:libgd:gd_graphics_library:*:rc5:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libgd:gd_graphics_library:*:rc5:*:*:*:*:*:*

CVE-2007-3472

https://nvd.nist.gov/vuln/detail/CVE-2007-3472

GLSA-200708-05

https://security.gentoo.org/glsa/200708-05

RHSA-2008:0146

https://access.redhat.com/errata/RHSA-2008:0146

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.

There are no relevant records.

Vulnerability ID	VCID-8571-q585-aaar
Aliases	CVE-2007-3472
Summary	Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact.
Status	Published
Exploitability	0.5
Weighted Severity	9.0
Risk	4.5
Affected and Fixed Packages	Package Details

CWE-189	Numeric Errors
CWE-190	Integer Overflow or Wraparound

Percentile	0.91322
EPSS Score	0.08046
Published At	March 28, 2025, 12:55 p.m.