← back
CVE-2021-20302

CVE-2021-20302

EPSS 0.9%CWE-20
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
04 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A flaw was found in OpenEXR's TiledInputFile functionality. This flaw allows an attacker who can submit a crafted single-part non-image to be processed by OpenEXR, to trigger a floating-point exception error. The highest threat from this vulnerability is to system availability.
Affected products
n/a · OpenEXR