Unrated severityNVD Advisory· Published Dec 23, 2022· Updated Apr 14, 2025
CVE-2022-41988
CVE-2022-41988
Description
An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0. A specially-crafted TIFF file can lead to a disclosure of sensitive information. An attacker can provide a malicious file to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: =2.3.19.0
- OpenImageIO Project/OpenImageIOv5Range: v2.3.19.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.