Vulnerability Details CVE-2023-39329
A flaw was found in OpenJPEG. A resource exhaustion can occur in the opj_t1_decode_cblks function in tcd.c through a crafted image file, causing a denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.2%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-39329
-
cpe:2.3:a:uclouvain:openjpeg:-
-
cpe:2.3:a:uclouvain:openjpeg:2.0
-
cpe:2.3:a:uclouvain:openjpeg:2.5.0
-
cpe:2.3:o:redhat:enterprise_linux:6.0
-
cpe:2.3:o:redhat:enterprise_linux:7.0
-
cpe:2.3:o:redhat:enterprise_linux:8.0
-
cpe:2.3:o:redhat:enterprise_linux:9.0