Lucene search
K

13 matches found

OSV
OSV
added 2026/06/18 9:16 p.m.6 views

DEBIAN-CVE-2026-45696

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K High-Throughput JPEG 2000 decoder, htundoimpl in OpenEXRCore is vulnerable to a heap-buffer-overflow READ. The htundoimp...

6.5CVSS6AI score0.00263EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/07 4:4 a.m.6 views

CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

6.3CVSS5.8AI score0.00393EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/21 1:27 a.m.6 views

CVE-2026-39886 OpenEXR has HTJ2K Signed Integer Overflow in ht_undo_impl()

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Versions 3.4.0 through 3.4.9 have a signed integer overflow vulnerability in OpenEXR's HTJ2K High-Throughput JPEG 2000 decompression path. The htundoimp...

5.3CVSS5.8AI score0.00302EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.5 views

RHEL 9 : openexr (RHSA-2026:8871)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:8871 advisory. OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a...

8.4CVSS6.3AI score0.00201EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/04/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-34588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.1.0 to...

8.8CVSS5.9AI score0.00482EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/04/03 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-34544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version...

8.4CVSS5.8AI score0.00244EPSS
Exploits1References4
NVD
NVD
added 2026/04/01 9:17 p.m.5 views

CVE-2026-34545

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.7, an attacker providing a crafted .exr file with HTJ2K compression and a channel width of 32768 can write...

8.8CVSS0.00611EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-23375

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00259EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-23316

Malicious code in bioql PyPI...

6.2CVSS6.3AI score0.00198EPSS
Exploits1References3
OSV
OSV
added 2025/07/31 8:25 p.m.5 views

CVE-2025-48073 OpenEXR ScanLineProcess::run_fill NULL Pointer Write In "reduceMemory" Mode

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a...

4.6CVSS6.5AI score0.00198EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2025/07/31 8:25 p.m.5 views

CVE-2025-48073

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a...

6.2CVSS5.3AI score0.00198EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2025/07/31 8:13 p.m.3 views

CVE-2025-48071 OpenEXR's Forged Unpacked Size can Lead to Heap-Based Buffer Overflow in Deep Scanline Parsing

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.2 through 3.3.0, there is a heap-based buffer overflow during a write operation when decompressing ZIPS-packed deep scan-line EXR files...

8.4CVSS7AI score0.00312EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/07/31 8:13 p.m.10 views

CVE-2025-48071 OpenEXR's Forged Unpacked Size can Lead to Heap-Based Buffer Overflow in Deep Scanline Parsing

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.2 through 3.3.0, there is a heap-based buffer overflow during a write operation when decompressing ZIPS-packed deep scan-line EXR files...

8.4CVSS0.00312EPSS
Exploits1References3
Rows per page
Query Builder