CVE-2024-56826

CVSS 3.1 Score 5.6 of 10 (medium)

Details

Published Jan 9, 2025

CWE ID 122

Summary

CVE-2024-56826 is a newly identified vulnerability affecting the OpenJPEG project. This issue involves a heap buffer overflow that can be triggered when specific options are used with the opj_decompress utility. The consequence of this vulnerability is an application crash or potentially other undefined behaviors. Successful exploitation of this vulnerability could lead to significant security risks or system instability. OpenJPEG users are advised to apply the forthcoming patch to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

OpenJPEG

Affected Vendors

Openjpeg

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2F-6_C
https://www.cve.org/CVERecord?id=CVE-2024-56826
https://nvd.nist.gov/vuln/detail/CVE-2024-56826

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Predator Still Active, with New Client and Corporate Links Identified

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

Know What Matters

For Customers

For Partners