OpenImageIO Out-of-Bounds Read Vulnerability

2022-12-2300:00:00

China National Vulnerability Database

www.cnvd.org.cn

openimageio

vulnerability

out-of-bounds read

tiff

image files

sensitive information

0.001 Low

EPSS

Percentile

24.3%

JSON

OpenImageIO is an image read/write library, along with a number of tools and applications. An out-of-bounds read vulnerability exists in OpenImageIO. The vulnerability is caused due to an out-of-bounds read vulnerability when processing string fields in TIFF image files. An attacker can exploit this vulnerability to obtain sensitive information.

CPENameOperatorVersion
openimageio openimageio 2.eq3.19.0

CPE	Name	Operator	Version
	openimageio openimageio 2.	eq	3.19.0

0.001 Low

EPSS

Percentile

24.3%

JSON

Related for CNVD-2023-55384