First published: Tue Apr 13 2021(Updated: )
An out-of-bounds write vulnerability exists in the JPG format SOF marker processing of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
AccuSoft ImageGear | =19.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-21784 is an out-of-bounds write vulnerability in the JPG format SOF marker processing of Accusoft ImageGear 19.8.
CVE-2021-21784 can lead to memory corruption when a specially crafted malformed file is processed, potentially allowing an attacker to execute arbitrary code or crash the application.
The severity rating of CVE-2021-21784 is critical, with a CVSS score of 7.8.
To fix CVE-2021-21784, users should update to a patched version of Accusoft ImageGear 19.8 when it becomes available.
The Common Weakness Enumeration (CWE) ID for CVE-2021-21784 is CWE-787 (Out-of-bounds Write).