CVE-2022-38216




An integer overflow exists in Mapbox's closed source gl-native library prior to version 10.6.1, which is bundled with multiple Mapbox products including open source libraries. The overflow is caused by large image height and width values when creating a new Image and allows for out of bounds writes, potentially crashing the Mapbox process.


We have discovered 442 live websites that are affected by CVE-2022-38216.

Contact us to get more info



Affected Software

Product  Mapbox
Category Maps
Vulnerable Versions
  • from 0 before 10.6.1
Total Vulnerable Versions14
Vulnerable Domains442 live websites (93.64% of Mapbox install base)


Common Weakness Enumeration


CWE-190 Integer Overflow or Wraparound


Distribution by Website Rank

The diagram provides a graphic representation of the correlation between the occurrence of CVE-2022-38216 and the relative popularity of websites


Details

  • Published - Aug 16, 2022
  • Updated - Aug 16, 2022





Countries

United States334 websites


Canada88 websites
GB5 websites
Australia3 websites
France3 websites
Switzerland2 websites
Netherlands2 websites
Sweden2 websites
Germany1 websites
Croatia1 websites

TLDs

.com374 websites
.ca25 websites
.net17 websites
.org6 websites
.fr4 websites
.com.au2 websites
.nl2 websites
.se2 websites
.ch1 websites
.co1 websites

Vulnerable Versions

Vulnerable versions are highlighted in red


Geographical Distribution

The distribution of websites across the globe that are exposed to CVE-2022-38216 through included software libraries and plugins.



References


Websites affected by CVE-2022-38216

Top websites that are affected by CVE-2022-38216. Please click on the "Contact us" button above to get more information.
DomainCountryRankContacts
***.*****************.com United States**,***
***.**************.com Canada***,***
***.****.***.au Australia*,***,***
***.*****************.com GB*,***,***
*********.com United States*,***,***
************.fr France*,***,***
***.****************.com Canada*,***,***
***.***************.com Canada*,***,***
***.**************.fr France*,***,***
***.**************.com United States*,***,***
See full domain list