Vulnerabilities > Openimageio > Openimageio > 2.4.4.2

DATE CVE VULNERABILITY TITLE RISK
2023-07-03 CVE-2023-36183 Classic Buffer Overflow vulnerability in Openimageio
Buffer Overflow vulnerability in OpenImageIO v.2.4.12.0 and before allows a remote to execute arbitrary code and obtain sensitive information via a crafted file to the readimg function.
local
low complexity
openimageio CWE-120
7.8
2022-12-22 CVE-2022-41837 Return of Stack Variable Address vulnerability in multiple products
An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
low complexity
openimageio debian CWE-562
critical
9.8
2022-12-22 CVE-2022-41838 Heap-based Buffer Overflow vulnerability in multiple products
A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
low complexity
openimageio debian CWE-122
critical
9.8
2022-12-22 CVE-2022-41999 NULL Pointer Dereference vulnerability in multiple products
A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0 and v2.4.4.2.
network
low complexity
openimageio debian CWE-476
7.5
2022-12-22 CVE-2022-43592 Out-of-bounds Read vulnerability in multiple products
An information disclosure vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-125
5.9
2022-12-22 CVE-2022-43593 NULL Pointer Dereference vulnerability in multiple products
A denial of service vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-476
5.9
2022-12-22 CVE-2022-43594 NULL Pointer Dereference vulnerability in multiple products
Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-476
5.9
2022-12-22 CVE-2022-43595 NULL Pointer Dereference vulnerability in multiple products
Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-476
5.9
2022-12-22 CVE-2022-43596 Out-of-bounds Read vulnerability in multiple products
An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-125
5.9
2022-12-22 CVE-2022-43597 Heap-based Buffer Overflow vulnerability in multiple products
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian CWE-122
8.1