Vulnerability Description
Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries. Alien::FreeImage contains version 3.17.0 of the FreeImage library from 2017, which has known vulnerabilities such as CVE-2015-0852 and CVE-2025-65803. The library embeds other images libraries that also have known vulnerabilities.
CVSS Score
HIGH
References
- https://freeimage.sourceforge.io/
- https://github.com/kmx/alien-freeimage/issues/4
- https://github.com/kmx/alien-freeimage/issues/5
- https://metacpan.org/release/KMX/Alien-FreeImage-1.001/source/src/Source
- https://nvd.nist.gov/vuln/detail/CVE-2015-0852
- https://nvd.nist.gov/vuln/detail/CVE-2025-65803
FAQ
What is CVE-2022-4988?
CVE-2022-4988 is a vulnerability with a CVSS score of 7.3 (HIGH). Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries. Alien::FreeImage contains version 3.17.0 of the FreeImage library from 2017, which has known vulnerabilities su...
How severe is CVE-2022-4988?
CVE-2022-4988 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-4988?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.