CVE-2025-48073 Information
Aug 01, 2025
cve
Description
OpenEXR provides the specification and reference implementation of the EXR file format an image storage format for the motion picture industry. In version 3.3.2 when reading a deep scanline image with a large sample count in reduceMemory mode it is possible to crash a target application with a NULL pointer dereference in a write operation. This is fixed in version 3.3.3.
Reference
https://github.com/AcademySoftwareFoundation/openexr/security/advisories/GHSA-qhpm-86v7-phmm https://github.com/ShielderSec/poc/tree/main/CVE-2025-48073
Related CNNVD
CNNVD-202507-3959 (Published: 2025-07-31)
Share on: