CVE-2022-2831 — Vulnetix

CVE-2022-2831 PUBLISHED

A flaw was found in Blender 3.3.0. An interger overflow in source/blender/blendthumb/src/blendthumb_extract.cc may lead to program crash or memory corruption.

EPSS 0.78% · 74.0th percentile

Risk Scores

EPSS Score

0.78%

74.0th percentile

Affected Products

Vendor	Product	Versions
n/a	Blender	*
blender	blender	3.3.0

Timeline

Aug 16, 2022 CVE Published
Aug 17, 2022 EPSS Score
Oct 2, 2022 EPSS Score
Nov 17, 2022 EPSS Score
Jan 2, 2023 EPSS Score
Feb 16, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 4, 2023 EPSS Score
Aug 19, 2023 EPSS Score
Oct 4, 2023 EPSS Score
Nov 19, 2023 EPSS Score

References

https://developer.blender.org/T99705 url
https://developer.blender.org/rBb1329d7eaa52a11c73b75d19d20bd8f6d11ac535 url
https://developer.blender.org/rB32df09b2416a6961704eca0fe73534c8c4e715b2 url
https://nvd.nist.gov/vuln/detail/CVE-2022-2831 advisory

Open in Interactive Console →