CVE-2022-40146

Risk Scores

Affected Products

Exploit Intelligence

• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)
• Vulnerable svg-to-png service (github-poc-repo)

…and 22 more exploits

Timeline

• Sep 22, 2022 CVE Published
• Sep 23, 2022 EPSS Score
• Nov 1, 2022 EPSS Score
• Mar 17, 2025 EPSS Score
• Mar 19, 2025 EPSS Score
• Mar 20, 2025 EPSS Score
• Mar 28, 2025 EPSS Score
• Mar 29, 2025 EPSS Score
• Mar 30, 2025 EPSS Score
• May 3, 2025 EPSS Score
• Jun 11, 2025 EPSS Score
• Jul 19, 2025 EPSS Score

References

• ALAS-2023-1695: batik (important) advisory