Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-jmmx-24xf-r6qm

Опубликовано: 26 мар. 2022
Источник: github
Github: Не прошло ревью
CVSS3: 5.5

Описание

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

Ссылки

EPSS

Процентиль: 67%
0.0053
Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2021-3933

Дефекты

CWE-190

Связанные уязвимости

ubuntu логотип

CVE-2021-3933

CVSS3: 5.5
ubuntu
почти 4 года назад

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

redhat логотип

CVE-2021-3933

CVSS3: 5.5
redhat
больше 4 лет назад

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

nvd логотип

CVE-2021-3933

CVSS3: 5.5
nvd
почти 4 года назад

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

debian логотип

CVE-2021-3933

CVSS3: 5.5
debian
почти 4 года назад

An integer overflow could occur when OpenEXR processes a crafted file ...

fstec логотип

BDU:2023-01667

CVSS3: 5.3
fstec
больше 4 лет назад

Уязвимость программного обеспечения для хранения изображений с широкими динамическими диапазоном яркости OpenEXR, связанная с целочисленным переполнением, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 67%
0.0053
Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2021-3933

Дефекты

CWE-190