Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka libgd) through 2.2.3, as used in PHP through 7.0.11, allows remote attackers to cause a denial of service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Integer Overflow
Denial Of Service
PHP
Buffer Overflow
Libgd
+1
NVD
GitHub
CVSS 3.0
9.8
EPSS
3.4%