In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Giflib
Ubuntu Linux
Debian Linux
NVD
CVSS 3.1
6.5
EPSS
1.5%
Zabbix through 4.4.0alpha1 allows User Enumeration. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Zabbix
PHP
Information Disclosure
Debian Linux
NVD
CVSS 3.1
5.3
EPSS
2.0%