Vulnerabilities > CVE-2020-16588 - NULL Pointer Dereference vulnerability in multiple products

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
openexr
debian
CWE-476
NVD
Published: 2020-12-09
Updated: 2023-02-03

Summary

A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in generatePreview in makePreview.cpp that can cause a denial of service via a crafted EXR file.

Vulnerable Configurations

Part Description Count
Application
Openexr
1
OS
Debian
1

Common Weakness Enumeration (CWE)

References