CVE-2022-4988

Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries

CVSS 7.3 HIGHEPSS 0.3%CWE-1395

Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries. Alien::FreeImage contains version 3.17.0 of the FreeImage library from 2017, which has known vulnerabilities such as CVE-2015-0852 and CVE-2025-65803. The library embeds other images libraries that also have known vulnerabilities.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Produtos afetados

KMX · Alien::FreeImage

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://freeimage.sourceforge.io/https://github.com/kmx/alien-freeimage/issues/4 https://github.com/kmx/alien-freeimage/issues/5 https://metacpan.org/release/KMX/Alien-FreeImage-1.001/source/src/Source https://nvd.nist.gov/vuln/detail/CVE-2015-0852 https://nvd.nist.gov/vuln/detail/CVE-2025-65803