Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-bpj4-d9rq-2kd8
Vulnerability ID VCID-bpj4-d9rq-2kd8
Aliases CVE-2007-3741
Summary The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp allow user-assisted remote attackers to cause a denial of service (crash or memory consumption) via crafted image files, as discovered using the fusil fuzzing tool.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-20 Improper Input Validation
System Score Found at
epss 0.02231 https://api.first.org/data/v1/epss?cve=CVE-2007-3741
epss 0.02231 https://api.first.org/data/v1/epss?cve=CVE-2007-3741
epss 0.02231 https://api.first.org/data/v1/epss?cve=CVE-2007-3741
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3741.json
https://api.first.org/data/v1/epss?cve=CVE-2007-3741
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3741
248053 https://bugzilla.redhat.com/show_bug.cgi?id=248053
RHSA-2007:0513 https://access.redhat.com/errata/RHSA-2007:0513
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.84893
EPSS Score 0.02231
Published At June 11, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-11T20:24:02.698298+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0