Search for vulnerabilities
Vulnerability details: VCID-shsj-rvx6-93bq
Vulnerability ID VCID-shsj-rvx6-93bq
Aliases CVE-2011-2691
Summary NULL Pointer Dereference The png_err function in pngerror.c in libpng makes a function call using a NULL pointer argument instead of an empty-string argument, which allows remote attackers to cause a denial of service (application crash) via a crafted PNG image.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-476 NULL Pointer Dereference
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
System Score Found at
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
epss 0.03384 https://api.first.org/data/v1/epss?cve=CVE-2011-2691
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2691.json
https://api.first.org/data/v1/epss?cve=CVE-2011-2691
720608 https://bugzilla.redhat.com/show_bug.cgi?id=720608
CVE-2011-2691 https://nvd.nist.gov/vuln/detail/CVE-2011-2691
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.8692
EPSS Score 0.03384
Published At Aug. 6, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T09:20:55.355837+00:00 GitLab Importer Import https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libpng/CVE-2011-2691.yml 37.0.0