Vulnerability CVE-2022-41988


Published: 2022-12-22

Description:
An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImageIO v2.3.19.0. A specially-crafted TIFF file can lead to a disclosure of sensitive information. An attacker can provide a malicious file to trigger this vulnerability.

Type:

CWE-125

(Out-of-bounds Read)

 References:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1643

Copyright 2026, cxsecurity.com

 

Back to Top