cvedb.io
CVE-2021-3933
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2022-03-25T19:15:09.247 · Last modified 2026-06-17T04:06:00.850

Summary

An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack paths.

Affected products

openexr — openexr

Does this affect you?

Add your gear to cvedb and we'll alert you only when openexr ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.