CVE-2023-42299: Buffer Overflow
First published: Thu Nov 02 2023(Updated: )
Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_subimage_data function.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Openimageio Openimageio | =2.4.12.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this buffer overflow vulnerability?
The vulnerability ID for this buffer overflow vulnerability is CVE-2023-42299.
What is the affected software?
The affected software is OpenImageIO oiio version 2.4.12.0.
What is the severity of CVE-2023-42299?
The severity of CVE-2023-42299 is critical with a severity value of 9.8.
How does CVE-2023-42299 impact the system?
CVE-2023-42299 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_subimage_data function.
Is there a fix available?
For details on the fix for CVE-2023-42299, please refer to the official OpenImageIO GitHub repository at https://github.com/OpenImageIO/oiio/issues/3840.
- collector/nvd-api
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/openimageio
- canonical/openimageio openimageio
- version/openimageio openimageio/2.4.12.0