Vulnerabilities > Openimageio

DATE CVE VULNERABILITY TITLE RISK
2022-12-22 CVE-2022-41649 A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0.
network
low complexity
openimageio debian
critical
9.1
2022-12-22 CVE-2022-41684 Unspecified vulnerability in Openimageio 20220914
A heap out of bounds read vulnerability exists in the OpenImageIO master-branch-9aeece7a when parsing the image file directory part of a PSD image file.
local
low complexity
openimageio
5.5
2022-12-22 CVE-2022-41794 A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0.
network
low complexity
openimageio debian
critical
9.8
2022-12-22 CVE-2022-41837 An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
low complexity
openimageio debian
critical
9.8
2022-12-22 CVE-2022-41838 A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
low complexity
openimageio debian
critical
9.8
2022-12-22 CVE-2022-41977 Unspecified vulnerability in Openimageio 2.3.19.0
An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files.
local
low complexity
openimageio
3.3
2022-12-22 CVE-2022-41981 A stack-based buffer overflow vulnerability exists in the TGA file format parser of OpenImageIO v2.3.19.0.
network
high complexity
openimageio debian
8.1
2022-12-22 CVE-2022-41988 An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0.
network
low complexity
openimageio debian
7.5
2022-12-22 CVE-2022-41999 A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0 and v2.4.4.2.
network
low complexity
openimageio debian
7.5
2022-12-22 CVE-2022-43592 An information disclosure vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
network
high complexity
openimageio debian
5.9