Vulnerabilities > Openexr > Openexr > 2.4.3

DATE CVE VULNERABILITY TITLE RISK
2021-06-08 CVE-2021-23169 Out-of-bounds Write vulnerability in multiple products
A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1.
network
low complexity
openexr fedoraproject CWE-787
8.8
8.8
2021-06-08 CVE-2021-23215 Resource Exhaustion vulnerability in multiple products
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1.
local
low complexity
openexr fedoraproject debian CWE-400
5.5
5.5
2021-06-08 CVE-2021-26260 Resource Exhaustion vulnerability in multiple products
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1.
local
low complexity
openexr fedoraproject debian CWE-400
5.5
5.5
2021-06-08 CVE-2021-26945 Integer Overflow or Wraparound vulnerability in Openexr
An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1.
local
low complexity
openexr CWE-190
5.5
5.5
2020-06-26 CVE-2020-15306 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in OpenEXR before v2.5.2. 		5.5
5.5
2020-06-26 CVE-2020-15305 Use After Free vulnerability in multiple products
An issue was discovered in OpenEXR before 2.5.2. 		5.5
5.5
2020-06-26 CVE-2020-15304 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in OpenEXR before 2.5.2.
local
low complexity
openexr fedoraproject opensuse CWE-476
5.5
5.5