Lucene search

K
cvelistRedhatCVELIST:CVE-2020-27841
HistoryJan 05, 2021 - 5:18 p.m.

CVE-2020-27841

2021-01-0517:18:51
CWE-122
redhat
www.cve.org
3

AI Score

6.2

Confidence

High

EPSS

0.002

Percentile

52.5%

There’s a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bounds read. The greatest impact from this flaw is to application availability.

CNA Affected

[
  {
    "product": "openjpeg",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "openjpeg 2.4.0"
      }
    ]
  }
]