First published: Wed Feb 23 2022(Updated: )
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
AccuSoft ImageGear | =19.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-21914 is a heap-based buffer overflow vulnerability in the Accusoft ImageGear 19.10 software.
CVE-2021-21914 has a severity rating of 8.8 (critical).
Accusoft ImageGear 19.10 is the affected software for CVE-2021-21914.
An attacker can provide a specially-crafted file to trigger the heap-based buffer overflow vulnerability in Accusoft ImageGear 19.10, potentially leading to code execution.
Accusoft ImageGear users should update to the latest version or apply the necessary patches to mitigate the vulnerability.