How severe is CVE-2021-21938?

CVE-2021-21938 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2021-21938

Name: imagegear
Author: accusoft

9.8CRITICAL

A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a ma

发布于: 4/14/2022更新于: 11/21/2024

描述

A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

AI分析AI驱动

受影响产品

accusoftimagegear

19.10

参考资料

http://help.accusoft.com/ImageGear/v20.0/Windows/DLL/webframe.html
Product
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1367
ExploitThird Party Advisory
http://help.accusoft.com/ImageGear/v20.0/Windows/DLL/webframe.html
Product
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1367
ExploitThird Party Advisory