CVE-2023-3430

Openimageio: heap-buffer-overflow in file src/gif.imageio/gifinput.cpp

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability was found in OpenImageIO, where a heap buffer overflow exists in the src/gif.imageio/gifinput.cpp file. This flaw allows a remote attacker to pass a specially crafted file to the application, which triggers a heap-based buffer overflow and could cause a crash, leading to a denial of service.

Se encontró una vulnerabilidad en OpenImageIO, donde existe un desbordamiento de búfer de almacenamiento dinámico en el archivo src/gif.imageio/gifinput.cpp. Este fallo permite que un atacante remoto pase un archivo especialmente manipulado a la aplicación, lo que desencadena un desbordamiento de búfer de almacenamiento dinámico y podría causar una falla, lo que llevaría a una denegación de servicio.

*Credits: N/A

CVSS Scores

NISTv3.1 7.5

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-06-27 CVE Reserved
2023-12-18 CVE Published
2023-12-22 First Exploit
2023-12-23 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-122: Heap-based Buffer Overflow
CWE-787: Out-of-bounds Write

CAPEC

References (2)

URL	Tag	Source
https://bugzilla.redhat.com/show_bug.cgi?id=2218380	Issue Tracking

URL	Date	SRC
https://github.com/AcademySoftwareFoundation/OpenImageIO/issues/3840	2023-12-22

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Openimageio Search vendor "Openimageio"	Openimageio Search vendor "Openimageio" for product "Openimageio"	2.4.11 Search vendor "Openimageio" for product "Openimageio" and version "2.4.11"	-	Affected	in	Redhat Search vendor "Redhat"	Linux Search vendor "Redhat" for product "Linux"	-	-	Safe