Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

SUSE CVE
SUSE CVEadded 2024/05/04 2:23 a.m.1 views

SUSE CVE-2024-28562

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::copyIntoFrameBuffer component when reading images in EXR format...

6.8CVSS7.7AI score0.0036EPSS
Exploits1References3
OSV
OSVadded 2024/03/20 6:15 a.m.1 views

UBUNTU-CVE-2024-28562

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::copyIntoFrameBuffer component when reading images in EXR format...

6.8CVSS6.1AI score0.0036EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2024/03/20 12:0 a.m.10 views

CVE-2024-28562

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to execute arbitrary code via the Imf22::copyIntoFrameBuffer component when reading images in EXR format...

6.8CVSS6.9AI score0.0036EPSS
Exploits1
SUSE CVE
SUSE CVEadded 2023/02/15 3:59 a.m.0 views

SUSE CVE-2020-11764

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

3.3CVSS7.2AI score0.00504EPSS
Exploits1References6
SUSE CVE
SUSE CVEadded 2023/02/15 3:45 a.m.2 views

SUSE CVE-2021-23169

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS7.9AI score0.00571EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/08/05 12:0 a.m.1 views

ILM OpenEXR 输入验证错误漏洞

OpenEXR is an image file format for high dynamic range HDR images from Industrial Light and Magic LIM, Inc. A buffer overflow vulnerability exists in Industrial Light and Magic OpenEXR, which stems from the product's Imf25:: copyIntoFrameBuffer contains a heap buffer overflow, which can be...

6.1CVSS6.3AI score0.00132EPSS
Exploits0References11
OSV
OSVadded 2021/06/08 12:15 p.m.1 views

DEBIAN-CVE-2021-23169

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS8.5AI score0.00571EPSS
Exploits0References1
OSV
OSVadded 2021/06/08 12:15 p.m.0 views

AZL-44256 CVE-2021-23169 affecting package OpenEXR 2.3.0-6

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS7.7AI score0.00571EPSS
Exploits0References1
OSV
OSVadded 2021/06/08 12:15 p.m.0 views

UBUNTU-CVE-2021-23169

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS7.6AI score0.00571EPSS
Exploits0References2
Prion
Prionadded 2021/06/08 12:15 p.m.20 views

Heap overflow

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

6.8CVSS8.8AI score0.00571EPSS
Exploits0References4Affected Software2
Debian CVE
Debian CVEadded 2021/06/08 12:0 a.m.23 views

CVE-2021-23169

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS9AI score0.00571EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2021/06/08 12:0 a.m.44 views

CVE-2021-23169

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS9AI score0.00571EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2021/04/22 12:21 p.m.32 views

CVE-2021-23169

A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR...

8.8CVSS4.4AI score0.00571EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2021/03/10 12:0 a.m.39 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : OpenEXR Multiple Vulnerabilities (NS-SA-2021-0031)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has OpenEXR packages installed that are affected by multiple vulnerabilities: - An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp...

5.5CVSS6.9AI score0.00576EPSS
Exploits3References4
Tenable Nessus
Tenable Nessusadded 2020/10/20 12:0 a.m.58 views

CentOS 7 : OpenEXR (RHSA-2020:4039)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4039 advisory. - An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refi...

5.5CVSS7AI score0.00576EPSS
Exploits3References4
Veracode
Veracodeadded 2020/10/01 3:46 a.m.30 views

Denial Of Service (DoS)

OpenEXR is vulnerable to denial of service DoS. The vulnerability exists through an out-of-bounds write in the copyIntoFrameBuffer function in ImfMisc.cpp...

5.5CVSS2.9AI score0.00504EPSS
Exploits1References20Affected Software1
RedHat Linux
RedHat Linuxadded 2020/09/29 8:19 p.m.2 views

OpenEXR: out-of-bounds write in copyIntoFrameBuffer function in ImfMisc.cpp

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

5.5CVSS7.2AI score0.00504EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2020/09/29 12:0 a.m.34 views

RHEL 7 : OpenEXR (RHSA-2020:4039)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4039 advisory. OpenEXR is a high dynamic-range HDR image file format developed by Industrial Light & Magic for use in computer imaging applications. This...

5.5CVSS7.3AI score0.00576EPSS
Exploits3References10
OSV
OSVadded 2020/09/19 12:0 a.m.13 views

OSV-2020-1809 UNKNOWN WRITE in Imf_2_5::copyIntoFrameBuffer

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25770 Crash type: UNKNOWN WRITE Crash state: Imf25::copyIntoFrameBuffer Imf25::LineBufferTask::execute IlmThread25::NullThreadPoolProvider::addTask...

7.2AI score
Exploits0References1
RedhatCVE
RedhatCVEadded 2020/04/28 5:40 p.m.30 views

CVE-2020-11764

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and...

5.5CVSS1.8AI score0.00504EPSS
Exploits1References3
Rows per page
Query Builder