Lucene search
+L

62 matches found

susecve
susecve
added 2023/02/15 3:22 a.m.3 views

SUSE CVE-2022-43601

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS9.3AI score0.0166EPSS
Exploits1References3
debiancve
debiancve
added 2022/12/23 11:3 p.m.67 views

CVE-2022-43598

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This...

8.1CVSS9.5AI score0.01808EPSS
Exploits1
cve
cve
added 2022/12/23 11:3 p.m.81 views

CVE-2022-43600

OpenImageIO CVE-2022-43600 affects OpenImageIO v2.4.4.2. The issue is in IFFOutput::close() where xmax=0xFFFF and TypeDesc::UINT16 can trigger a heap buffer overflow, potentially leading to denial of service or arbitrary code execution. Debian and GLSA advisories also reference related OpenImageI...

8.1CVSS9.1AI score0.0166EPSS
Exploits1References3Affected Software1
cve
cve
added 2022/12/23 11:3 p.m.82 views

CVE-2022-43598

OpenImageIO OpenImageIO v2.4.4.2 contains multiple memory corruption and out-of-bounds issues in the IFFOutput alignment padding path that can lead to arbitrary code execution when m_spec.format is TypeDesc::UINT8 or UINT16. Affected component: IFFOutput (format-dependent padding). Root cause: me...

8.1CVSS9.2AI score0.01808EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2022/12/23 11:3 p.m.29 views

CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS7.2AI score0.01132EPSS
Exploits1References3
debiancve
debiancve
added 2022/12/23 11:3 p.m.65 views

CVE-2022-43597

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This...

8.1CVSS9.5AI score0.01845EPSS
Exploits1
cnvd
cnvd
added 2022/12/23 12:0 a.m.27 views

OpenImageIO Code Execution Vulnerability (CNVD-2023-01791)

A code execution vulnerability exists in the OpenImageIO IFFOutput::close function, which is an image read/write library that also provides tools and applications. An attacker can use this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the "xmax"...

8.1CVSS2.9AI score0.0166EPSS
Exploits1References1
cnvd
cnvd
added 2022/12/23 12:0 a.m.28 views

OpenImageIO Code Execution Vulnerability (CNVD-2023-01793)

A code execution vulnerability exists in the IFFOutput::close function of OpenImageIO v2.4.4.2, an image read/write library that also provides tools and applications. An attacker could use this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the "ymax...

8.1CVSS2.6AI score0.01922EPSS
Exploits1References1
cnvd
cnvd
added 2022/12/23 12:0 a.m.47 views

OpenImageIO Code Execution Vulnerability (CNVD-2023-01790)

A code execution vulnerability exists in the OpenImageIO IFFOutput::close function, which is an image read/write library that also provides tools and applications. An attacker can use this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the "xmax"...

8.1CVSS2.9AI score0.01962EPSS
Exploits1References1
cnvd
cnvd
added 2022/12/23 12:0 a.m.47 views

OpenImageIO Code Execution Vulnerability (CNVD-2023-01792)

A code execution vulnerability exists in the IFFOutput::close function of OpenImageIO v2.4.4.2, an image read/write library that also provides tools and applications. An attacker can exploit this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the...

8.1CVSS2.6AI score0.0166EPSS
Exploits1References1
cnvd
cnvd
added 2022/12/23 12:0 a.m.42 views

OpenImageIO Information Disclosure Vulnerability

OpenImageIO is an image read/write library, along with a number of tools and applications. OpenImageIO suffers from an information disclosure vulnerability that is caused by a flaw in the IFFOutput channel interleaving function. An attacker can exploit this vulnerability to obtain sensitive...

5.9CVSS6AI score0.01132EPSS
Exploits1References1
nvd
nvd
added 2022/12/22 10:15 p.m.31 views

CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS0.01132EPSS
Exploits1References3
osv
osv
added 2022/12/22 10:15 p.m.28 views

CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS5.4AI score0.01132EPSS
Exploits1References5
osv
osv
added 2022/12/22 10:15 p.m.31 views

CVE-2022-43602

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS8.4AI score0.01922EPSS
Exploits1References5
osv
osv
added 2022/12/22 10:15 p.m.1 views

DEBIAN-CVE-2022-43597

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This...

8.1CVSS9.2AI score0.01845EPSS
Exploits1References1
osv
osv
added 2022/12/22 10:15 p.m.2 views

DEBIAN-CVE-2022-43599

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS9.3AI score0.01962EPSS
Exploits1References1
osv
osv
added 2022/12/22 10:15 p.m.2 views

DEBIAN-CVE-2022-43596

An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...

5.9CVSS7.3AI score0.01132EPSS
Exploits1References1
osv
osv
added 2022/12/22 10:15 p.m.2 views

DEBIAN-CVE-2022-43601

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS9.3AI score0.0166EPSS
Exploits1References1
osv
osv
added 2022/12/22 10:15 p.m.2 views

DEBIAN-CVE-2022-43600

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS9.3AI score0.0166EPSS
Exploits1References1
prion
prion
added 2022/12/22 10:15 p.m.18 views

Heap overflow

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

5.1CVSS8.3AI score0.01962EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder