Vulnerability Details CVE-2023-3430
A vulnerability was found in OpenImageIO, where a heap buffer overflow exists in the src/gif.imageio/gifinput.cpp file. This flaw allows a remote attacker to pass a specially crafted file to the application, which triggers a heap-based buffer overflow and could cause a crash, leading to a denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.3%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-3430
-
cpe:2.3:a:openimageio:openimageio:2.4.11
-
cpe:2.3:o:redhat:linux:-