Integer Overflow and Heap-Buffer Overflow Vulnerability in OpenEXR (Versions before 3.0.1)

CVE-2021-26945 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR.

Learn more about our Web Application Penetration Testing UK.