CVE-2023-40163
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Sep 25, 2023
CWE ID 787
Summary
CVE-2023-40163 is an out-of-bounds write vulnerability affecting Accusoft ImageGear 20.1. This issue lies within the allocate_buffer_for_jpeg_decoding functionality, which can result in memory corruption when processing a maliciously crafted JPEG file. An attacker can exploit this vulnerability by supplying a specially crafted image file to induce memory corruption, potentially leading to arbitrary code execution or system instability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Accusoft Corp