CVE-2017-9115 in OpenEXRinfo

Summary

In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

05/21/2017

Disclosure

05/21/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
101535OpenEXR half.h operator numeric error189Not definedOfficial fixCVE-2017-9115

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!