Syoyo
Products
3- 11 CVEs
- 1 CVE
- 1 CVE
Recent CVEs
13| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-1570 | 0.00 | — | 0.00 | Mar 22, 2023 | A vulnerability, which was classified as problematic, has been found in syoyo tinydng. Affected by this issue is the function __interceptor_memcpy of the file tiny_dng_loader.h. The manipulation leads to heap-based buffer overflow. Local access is required to approach this… | |||
| CVE-2022-3008 | 0.00 | — | 0.03 | Sep 5, 2022 | The tinygltf library uses the C library function wordexp() to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in… | |||
| CVE-2022-34300 | 0.00 | — | 0.01 | Jun 22, 2022 | In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData. | |||
| CVE-2020-18428 | 0.00 | — | 0.01 | Jul 26, 2021 | tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS). | |||
| CVE-2020-19490 | 0.00 | — | 0.01 | Jul 21, 2021 | tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. | |||
| CVE-2018-20652 | 0.00 | — | 0.01 | Jan 1, 2019 | An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted input, which leads to an out-of-memory exception. | |||
| CVE-2018-12687 | 0.00 | — | 0.01 | Jun 22, 2018 | tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h. | |||
| CVE-2018-12688 | 0.00 | — | 0.02 | Jun 22, 2018 | tinyexr 0.9.5 has a segmentation fault in the wav2Decode function. | |||
| CVE-2018-12503 | 0.00 | — | 0.02 | Jun 16, 2018 | tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h. | |||
| CVE-2018-12504 | 0.00 | — | 0.02 | Jun 16, 2018 | tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h. | |||
| CVE-2018-12093 | 0.00 | — | 0.01 | Jun 11, 2018 | tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr.h. | |||
| CVE-2018-12092 | 0.00 | — | 0.02 | Jun 11, 2018 | tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. | |||
| CVE-2018-12064 | 0.00 | — | 0.01 | Jun 8, 2018 | tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h. |
- CVE-2023-1570Mar 22, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as problematic, has been found in syoyo tinydng. Affected by this issue is the function __interceptor_memcpy of the file tiny_dng_loader.h. The manipulation leads to heap-based buffer overflow. Local access is required to approach this…
- CVE-2022-3008Sep 5, 2022risk 0.00cvss —epss 0.03
The tinygltf library uses the C library function wordexp() to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in…
- CVE-2022-34300Jun 22, 2022risk 0.00cvss —epss 0.01
In tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData.
- CVE-2020-18428Jul 26, 2021risk 0.00cvss —epss 0.01
tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).
- CVE-2020-19490Jul 21, 2021risk 0.00cvss —epss 0.01
tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.
- CVE-2018-20652Jan 1, 2019risk 0.00cvss —epss 0.01
An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote attackers could leverage this vulnerability to cause a denial-of-service via crafted input, which leads to an out-of-memory exception.
- CVE-2018-12687Jun 22, 2018risk 0.00cvss —epss 0.01
tinyexr 0.9.5 has an assertion failure in DecodePixelData in tinyexr.h.
- CVE-2018-12688Jun 22, 2018risk 0.00cvss —epss 0.02
tinyexr 0.9.5 has a segmentation fault in the wav2Decode function.
- CVE-2018-12503Jun 16, 2018risk 0.00cvss —epss 0.02
tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h.
- CVE-2018-12504Jun 16, 2018risk 0.00cvss —epss 0.02
tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h.
- CVE-2018-12093Jun 11, 2018risk 0.00cvss —epss 0.01
tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr.h.
- CVE-2018-12092Jun 11, 2018risk 0.00cvss —epss 0.02
tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.
- CVE-2018-12064Jun 8, 2018risk 0.00cvss —epss 0.01
tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h.