cvedb.io
CVE-2016-4330
HIGH · CVSS 8.6
EPSS exploitation probability: 0%
Published 2016-11-18T20:59:00.317 · Last modified 2026-06-17T00:47:21.587

Summary

In the HDF5 1.8.16 library's failure to check if the number of dimensions for an array read from the file is within the bounds of the space allocated for it, a heap-based buffer overflow will occur, potentially leading to arbitrary code execution.

Affected products

hdfgroup — hdf5

Does this affect you?

Add your gear to cvedb and we'll alert you only when hdfgroup ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.