Vulnerabilities > CVE-2023-24472 - Unspecified vulnerability in Openimageio 2.4.7.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A denial of service vulnerability exists in the FitsOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.7.1. A specially crafted ImageOutput Object can lead to denial of service. An attacker can provide malicious input to trigger this vulnerability.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- https://lists.debian.org/debian-lts-announce/2023/08/msg00005.html
- https://lists.debian.org/debian-lts-announce/2023/08/msg00005.html
- https://talosintelligence.com/vulnerability_reports/TALOS-2023-1709
- https://talosintelligence.com/vulnerability_reports/TALOS-2023-1709
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1709