CVE-2022-1122 in AutoVueinfo

Summary

A flaw was found in the opj2_decompress program in openjpeg2 2.4.0 in the way it handles an input directory with a large number of files. When it fails to allocate a buffer to store the filenames of the input directory, it calls free() on an uninitialized pointer, leading to a segmentation fault and a denial of service.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

03/28/2022

Disclosure

03/29/2022

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
234963	Oracle AutoVue Security denial of service	404	Not defined	Official fix	CVE-2022-1122
218741	Oracle Outside In Technology DC-Specific denial of service	404	Not defined	Official fix	CVE-2022-1122
196039	openjpeg2 opj2_decompress initialization	665	Not defined	Not defined	CVE-2022-1122

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!