Vulnerabilities > CVE-2021-3933

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
openexr
fedoraproject
debian
NVD
Published: 2022-03-25
Updated: 2024-11-21

Summary

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

Vulnerable Configurations

Part Description Count
Application
Openexr
65
OS
Fedoraproject
1
OS
Debian
2

References