Denial of Service Vulnerability in Academy Software Foundation OpenEXR
CVE-2024-31047

Currently unrated

Key Information:

Vendor: Academy Software Foundation
Status: OpenEXR
Vendor: CVE Published:; 8 April 2024

🔔 Create Academy Software Foundation Vulnerability Alert

What is CVE-2024-31047?

A vulnerability exists in the Academy Software Foundation's OpenEXR, specifically in versions up to 3.2.3, which can be exploited by a local attacker to induce a denial of service. This flaw is found in the convert function of exrmultipart.cpp, potentially leading to significant disruption of service.

References

https://github.com/AcademySoftwareFoundation/openexr/issu...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 8, 2024
Vulnerability Reserved
Mar 27, 2024

JSON