CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Issue Overview: A flaw was found in OpenEXR's B44Compressor. This flaw allows an attacker who can submit a crafted file to be processed by OpenEXR, to exhaust all memory accessible to the application. The highest threat from this vulnerability is to system availability. CVE-2021-20298 A flaw foun...

7.5CVSS6.5AI score0.01016EPSS

Exploits1

SUSE CVE•added 2023/02/15 4:45 a.m.•1 views

SUSE CVE-2017-9110

In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash...

5.3CVSS6.8AI score0.00458EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 4:41 a.m.•0 views

SUSE CVE-2017-12596

In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact...

5.3CVSS7.4AI score0.00528EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 3:47 a.m.•1 views

SUSE CVE-2021-20304

A flaw was found in OpenEXR's hufDecode functionality. This flaw allows an attacker who can pass a crafted file to be processed by OpenEXR, to trigger an undefined right shift error. The highest threat from this vulnerability is to system availability...

5.3CVSS6.5AI score0.00166EPSS

Exploits1References9

OSV•added 2022/08/26 11:4 a.m.•2 views

OESA-2022-1867 OpenEXR security update

OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light & Magic for use in computer imaging applications. Security Fixes: A flaw was found in OpenEXR's hufDecode functionality. This flaw allows an attacker who can pass a crafted file to be processed by...

7.5CVSS6.6AI score0.00166EPSS

Exploits1References2

OSV•added 2022/08/26 11:4 a.m.•1 views

OESA-2022-1868 OpenEXR security update

7.5CVSS6.6AI score0.00166EPSS

Exploits1References2

OSV•added 2022/08/23 4:15 p.m.•20 views

CVE-2021-20304

7.5CVSS6.2AI score0.00166EPSS

Exploits1References6

NVD•added 2022/08/23 4:15 p.m.•18 views

CVE-2021-20304

7.5CVSS0.00166EPSS

Exploits1References6

OSV•added 2022/08/23 4:15 p.m.•1 views

DEBIAN-CVE-2021-20304

7.5CVSS7.3AI score0.00166EPSS

Exploits1References1

UbuntuCve•added 2022/08/23 4:15 p.m.•38 views

CVE-2021-20304

7.5CVSS7AI score0.00166EPSS

Exploits1References2

Prion•added 2022/08/23 4:15 p.m.•20 views

Design/Logic Flaw

5CVSS7.2AI score0.00166EPSS

Exploits1References6Affected Software1

OSV•added 2022/08/23 4:15 p.m.•0 views

UBUNTU-CVE-2021-20304

7.5CVSS7.2AI score0.00166EPSS

Exploits1References3

Cvelist•added 2022/08/23 12:0 a.m.•16 views

CVE-2021-20304

7.4AI score0.00166EPSS

Exploits1References6

Debian CVE•added 2022/08/23 12:0 a.m.•26 views

CVE-2021-20304

7.5CVSS7.3AI score0.00166EPSS

Exploits1

CVE•added 2022/08/23 12:0 a.m.•109 views

CVE-2021-20304

OpenEXR contains a vulnerable hufDecode path (CVE-2021-20304). A crafted EXR file can trigger an undefined right-shift error, with the highest impact on availability. Public advisories document affected OpenEXR components and remediation via vendor patches/upgrades. Notably, Amazon Linux 2 ALAS a...

7.5CVSS7.1AI score0.00166EPSS

Exploits1References6Affected Software1

OSV•added 2022/01/23 12:0 a.m.•10 views

OSV-2022-77 Heap-buffer-overflow in hufDecode

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43916 Crash type: Heap-buffer-overflow READ 1 Crash state: hufDecode internalhufdecompress internalexrundopiz...

7.2AI score

Exploits0References1

OSV•added 2021/10/24 12:0 a.m.•15 views

OSV-2021-1479 Heap-buffer-overflow in hufDecode

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40231 Crash type: Heap-buffer-overflow READ 1 Crash state: hufDecode internalhufdecompress internalexrundopiz...

7.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by