CVE-2022-38216
An integer overflow exists in Mapbox's closed source gl-native library prior to version 10.6.1, which is bundled with multiple Mapbox products including open source libraries. The overflow is caused by large image height and width values when creating a new Image and allows for out of bounds writes, potentially crashing the Mapbox process.
We have discovered 442 live websites that are affected by CVE-2022-38216.
Contact us to get more info
Affected Software
| |
---|
Product | Mapbox |
Category | Maps |
Vulnerable Versions | |
Total Vulnerable Versions | 14 |
Vulnerable Domains | 442 live websites (93.64% of Mapbox install base) |
Common Weakness Enumeration
CWE-190 Integer Overflow or Wraparound
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2022-38216 and the relative popularity of websites