Unrated severityNVD Advisory· Published Dec 23, 2022· Updated Apr 15, 2025
CVE-2022-41649
CVE-2022-41649
Description
A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0. A specially-crafted TIFF file can cause a read of adjacent heap memory, which can leak sensitive process information. An attacker can provide a malicious file to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 2.3.19.0
- OpenImageIO Project/OpenImageIOv5Range: v2.3.19.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.