Lucene search
+L

CVE-2025-12495

🗓️ 23 Dec 2025 21:41:27Reported by zdiType 
cve
 cve
🔗 web.nvd.nist.gov👁 19 Views

CVE-2025-12495 OpenEXR parsing allows remote code execution via heap buffer overflow with user interaction.

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
nessus
Amazon Linux 2023 : openexr, openexr-devel, openexr-libs (ALAS2023-2026-1364)
23 Jan 202600:00
nessus
nessus
Fedora 42 : usd (2025-2e7d5d49f2)
3 Jan 202600:00
nessus
nessus
Fedora 43 : usd (2025-f882263432)
1 Jan 202600:00
nessus
nessus
Fedora 42 : mingw-openexr (2026-0e8fe3c8a3)
26 Jan 202600:00
nessus
nessus
Fedora 43 : mingw-openexr (2026-1fbf91067c)
25 Jan 202600:00
nessus
nessus
openSUSE 16 Security Update : openexr (openSUSE-SU-2025-20148-1)
13 Dec 202500:00
nessus
nessus
Linux Distros Unpatched Vulnerability : CVE-2025-12495
24 Dec 202500:00
nessus
amazon
Important: openexr
23 Jan 202600:00
amazon
alpinelinux
CVE-2025-12495
23 Dec 202521:41
alpinelinux
circl
CVE-2025-12495
11 Nov 202505:00
circl
Rows per page
NVD
Vulners
Node
openexropenexrRange<3.4.3
[
  {
    "vendor": "Academy Software Foundation",
    "product": "OpenEXR",
    "versions": [
      {
        "version": "3.4.0",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 08:32Current
7.7High risk
Vulners AI Score7.7
CVSS 37.8
EPSS0.00158
SSVC
19