Tinyexr Project - Tinyexr CVE

Filtered by vendor Tinyexr Project Subscribe

Filtered by product Tinyexr

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-19490	1 Tinyexr Project	1 Tinyexr	2021-07-31	4.3 MEDIUM	5.5 MEDIUM
tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.
CVE-2018-20652	1 Tinyexr Project	1 Tinyexr	2019-10-03	4.3 MEDIUM	6.5 MEDIUM
An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted input, which leads to an out-of-memory exception.

Vulnerabilities (CVE)