CVE-2019-13655

Imgix through 2019-06-19 allows remote attackers to cause a denial of service (resource consumption) by manipulating a small JPEG file to specify dimensions of 64250×64250 pixels, which is mishandled during an attempt to load the ‘whole image’ into memory.
Source: NIST
CVE-2019-13655

Leave a Reply

Your email address will not be published.