CVE-2023-39328 | THREATINT

Description

A vulnerability was found in OpenJPEG similar to CVE-2019-6988. This flaw allows an attacker to bypass existing protections and cause an application crash through a maliciously crafted file.

Reserved 2023-07-27 | Published 2024-07-09 | Updated 2024-10-14 | Assigner redhat

MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Problem types

Uncontrolled Resource Consumption

Product status

Default status

unknown

Default status

unknown

Default status

unknown

Default status

affected

Default status

affected

Default status

affected

Default status

affected

Default status

affected

Timeline

2023-07-03:	Reported to Red Hat.
2023-07-03:	Made public.

References

access.redhat.com/security/cve/CVE-2023-39328 vdb-entry

bugzilla.redhat.com/show_bug.cgi?id=2219236 (RHBZ#2219236) issue-tracking

cve.org (CVE-2023-39328)

nvd.nist.gov (CVE-2023-39328)

Download JSON

Support options

Helpdesk Chat, Email, Knowledgebase

Subscribe to our newsletter to learn more about our work.