First published: Fri Jun 11 2021(Updated: )
A memory corruption vulnerability exists in the PNG png_palette_process functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to a heap buffer overflow. An attacker can provide malicious inputs to trigger this vulnerability.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
AccuSoft ImageGear | =19.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2021-21808 is high with a score of 8.8.
CVE-2021-21808 is a memory corruption vulnerability in the PNG png_palette_process functionality of Accusoft ImageGear 19.9. It can lead to a heap buffer overflow when a specially crafted malformed file is provided as input.
Accusoft ImageGear version 19.9 is affected by CVE-2021-21808.
CVE-2021-21808 can be triggered by providing a specially crafted malformed file as input.
Currently, there is no information available about a patch for CVE-2021-21808. It is recommended to follow the vendor's advisory for updates and patches.