Vulnerabilities > Openimageio

DATE CVE VULNERABILITY TITLE RISK
2023-12-18 CVE-2023-3430 Out-of-bounds Write vulnerability in Openimageio 2.4.11
A vulnerability was found in OpenImageIO, where a heap buffer overflow exists in the src/gif.imageio/gifinput.cpp file.
network
low complexity
openimageio CWE-787
7.5
2023-11-02 CVE-2023-42299 Classic Buffer Overflow vulnerability in Openimageio 2.4.12.0
Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_subimage_data function.
network
low complexity
openimageio CWE-120
critical
9.8
2023-10-23 CVE-2023-42295 Integer Overflow or Wraparound vulnerability in Openimageio 2.4.12.0
An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_rle_image function of file bifs/unquantize.c
network
low complexity
openimageio CWE-190
8.8
2023-07-03 CVE-2023-36183 Classic Buffer Overflow vulnerability in Openimageio
Buffer Overflow vulnerability in OpenImageIO v.2.4.12.0 and before allows a remote to execute arbitrary code and obtain sensitive information via a crafted file to the readimg function.
local
low complexity
openimageio CWE-120
7.8
2023-03-30 CVE-2023-22845 Out-of-bounds Read vulnerability in Openimageio 2.4.7.1
An out-of-bounds read vulnerability exists in the TGAInput::decode_pixel() functionality of OpenImageIO Project OpenImageIO v2.4.7.1.
network
low complexity
openimageio CWE-125
7.5
2023-03-30 CVE-2023-24473 Out-of-bounds Read vulnerability in Openimageio 2.4.7.1
An information disclosure vulnerability exists in the TGAInput::read_tga2_header functionality of OpenImageIO Project OpenImageIO v2.4.7.1.
network
low complexity
openimageio CWE-125
7.5
2023-03-30 CVE-2023-24472 Uncontrolled Recursion vulnerability in Openimageio 2.4.7.1
A denial of service vulnerability exists in the FitsOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.7.1.
network
low complexity
openimageio CWE-674
7.5
2022-12-22 CVE-2022-36354 Off-by-one Error vulnerability in multiple products
A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master-branch-9aeece7a and v2.3.19.0.
network
low complexity
openimageio debian CWE-193
5.3
2022-12-22 CVE-2022-38143 Write-what-where Condition vulnerability in Openimageio 2.3.19.0
A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images.
network
low complexity
openimageio CWE-123
critical
9.8
2022-12-22 CVE-2022-41639 Heap-based Buffer Overflow vulnerability in multiple products
A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0.
network
low complexity
openimageio debian CWE-122
critical
9.8