How severe is CVE-2021-21938?

CVE-2021-21938 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2021-21938

Name: imagegear
Author: accusoft

9.8CRITICAL

A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a ma

公開日: 4/14/2022更新日: 11/21/2024

説明

A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

AI分析AIによる分析

影響を受ける製品

accusoftimagegear

19.10

参照

http://help.accusoft.com/ImageGear/v20.0/Windows/DLL/webframe.html
Product
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1367
ExploitThird Party Advisory
http://help.accusoft.com/ImageGear/v20.0/Windows/DLL/webframe.html
Product
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1367
ExploitThird Party Advisory