Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-02	CVE-2023-42299	Classic Buffer Overflow vulnerability in Openimageio 2.4.12.0 Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_subimage_data function. network low complexity openimageio CWE-120 critical	9.8
2022-12-22	CVE-2022-38143	Unspecified vulnerability in Openimageio 2.3.19.0 A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images. network low complexity openimageio critical	9.8
2022-12-22	CVE-2022-41639	A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0. network low complexity openimageio debian critical	9.8
2022-12-22	CVE-2022-41649	A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0. network low complexity openimageio debian critical	9.1
2022-12-22	CVE-2022-41794	A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0. network low complexity openimageio debian critical	9.8
2022-12-22	CVE-2022-41837	An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO v2.4.4.2. network low complexity openimageio debian critical	9.8
2022-12-22	CVE-2022-41838	A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. network low complexity openimageio debian critical	9.8