VDB
DEBIAN-CVE-2021-23169
DEBIAN-CVE-2021-23169
PUBLISHED
CVSS 8.800000190734863 HIGH
A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR in versions before 3.0.1. An attacker could use this flaw to execute arbitrary code with the permissions of the user running the application compiled against OpenEXR.
Risk Scores
CVSS v3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | openexr | 0, 0, 0 |
| Debian:14 | openexr | 0, 0, 0 |
| Debian:12 | openexr | 0, 0, 0 |
| Debian:13 | openexr | 0, 0, 0 |
Timeline
- Jun 8, 2021 CVE Published
- Apr 28, 2026 CVE Updated