CVE-2022-36752

Published July 28th, 2022

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

N/A

Affected

1

PROJECT

Description

png2webp v1.0.4 was discovered to contain an out-of-bounds write via the function w2p. This vulnerability is exploitable via a crafted png file.

landfillbaby/png2webp

Simple command-line batch PNG to WebP converter (and vice versa).

GitHub

20