Vulnerabilities > Openexr > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-14 | CVE-2020-11759 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. | 5.5 |
| 2020-04-14 | CVE-2020-11758 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in OpenEXR before 2.4.1. | 5.5 |
| 2017-10-03 | CVE-2017-14988 | Resource Exhaustion vulnerability in Openexr 2.2.0 Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers to cause a denial of service (excessive memory allocation) via a crafted file that is accessed with the ImfOpenInputFile function in IlmImf/ImfCRgbaFile.cpp. | 5.5 |
| 2017-08-07 | CVE-2017-12596 | Out-of-bounds Read vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it may result in denial of service or possibly unspecified other impact. | 6.8 |
| 2017-05-21 | CVE-2017-9116 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid read of size 1 in the uncompress function in ImfZip.cpp could cause the application to crash. network openexr | 4.3 |
| 2017-05-21 | CVE-2017-9115 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code. network openexr | 6.8 |
| 2017-05-21 | CVE-2017-9114 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash. network openexr | 4.3 |
| 2017-05-21 | CVE-2017-9113 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp could cause the application to crash or execute arbitrary code. network openexr | 4.3 |
| 2017-05-21 | CVE-2017-9112 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cpp could cause the application to crash. network openexr | 4.3 |
| 2017-05-21 | CVE-2017-9111 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code. network openexr | 6.8 |