2 matches found
CVE-2022-22137
CVE-2022-22137 describes a memory-corruption vulnerability in the Accusoft ImageGear 19.10 library, caused by a boundary/size calculation error in ioca_mys_rgb_allocate. A crafted IOCA file can trigger a use-after-free via a malformed table_mys_rgb_ptr, potentially leading to arbitrary code execu...
CVE-2022-22137
A memory corruption vulnerability exists in the iocamysrgballocate functionality of Accusoft ImageGear 19.10. A specially-crafted malformed file can lead to an arbitrary free. An attacker can provide a malicious file to trigger this vulnerability...