Published: 11/06/2018 Updated: 03/10/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 446
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr.h.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

tinyexr project tinyexr 0.9.5

Github Repositories

A repository for archiving my open-source program vulnerability discoveries.

Overview Kubernetes CVE-2020-8560 (to be disclosed) CVE-2020-XXXX (to be disclosed) Go/archive/tar out-of-range panic in strconvgo:269 postgresSQL Buffer overflow when continuously send SIGHUP to postgres libjpeg-v9c CVE-2018-11813 (with acknowledgement in official website) libucl-230f197 Assertion Failure in ucl_msgpackc:845 libjpeg-v9a CVE-2018-11212 CVE-2018-112

EnFuzzer Tool for ensemble fuzzing, it works across most Linux distributions So far, Enfuzzer has passed all the testcases and worked well on ubuntu, archlinux, centos, debian, fedora, gentoo and opensuse The latest version of enfuzzer was moved to wingtechercom/Enfuzz/ The detail use of Enfuzz Server can be found in githubcom/131250106/enfuzzer/tree/master