First published: Wed Mar 31 2021(Updated: )
An out-of-bounds write vulnerability exists in the SGI format buffer size processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
AccuSoft ImageGear | =19.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-21782 is an out-of-bounds write vulnerability in the SGI format buffer size processing functionality of Accusoft ImageGear 19.8.
The severity of CVE-2021-21782 is critical, with a severity value of 8.8.
CVE-2021-21782 occurs when a specially crafted malformed file is processed by Accusoft ImageGear 19.8, leading to memory corruption.
CVE-2021-21782 can be exploited by providing a malicious file to trigger the vulnerability.
At the moment, there is no known fix for CVE-2021-21782. It is recommended to follow the guidance provided by Accusoft or the software vendor to mitigate the risk.