threat
engine
.sh
Back
·
··:··
Home
/
Product
/
openimageio
Product
openimageio
42 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-43996
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
5.5
MEDIUM
CVE-2026-43909
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
8.8
HIGH
CVE-2026-43908
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
8.8
HIGH
CVE-2026-43907
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
8.3
HIGH
CVE-2026-43906
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
7.8
HIGH
CVE-2026-43905
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
7.8
HIGH
CVE-2026-43904
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
7.8
HIGH
CVE-2026-43903
< 3.0.18.0
OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation.
7.8
HIGH
CVE-2024-55194
all versions
OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component /OpenImageIO/fmath.h.
9.8
CRITICAL
CVE-2024-55193
all versions
OpenImageIO v3.1.0.0dev was discovered to contain a segmentation violation via the component /OpenImageIO/string_view.h.
9.8
CRITICAL
CVE-2024-55192
all versions
OpenImageIO v3.1.0.0dev was discovered to contain a heap overflow via the component OpenImageIO_v3_1_0::farmhash::inlined::Fetch64
9.8
CRITICAL
CVE-2023-3430
all versions
A vulnerability was found in OpenImageIO, where a heap buffer overflow exists in the src/gif.imageio/gifinput.cpp file. This flaw
7.5
HIGH
CVE-2023-42299
all versions
Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial
9.8
CRITICAL
CVE-2023-42295
all versions
An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the r
8.8
HIGH
CVE-2023-36183
<= 2.4.12.0
Buffer Overflow vulnerability in OpenImageIO v.2.4.12.0 and before allows a remote to execute arbitrary code and obtain sensitive
7.8
HIGH
CVE-2023-24473
all versions
An information disclosure vulnerability exists in the TGAInput::read_tga2_header functionality of OpenImageIO Project OpenImageIO
5.3
MEDIUM
CVE-2023-24472
all versions
A denial of service vulnerability exists in the FitsOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.7.1. A s
7.5
HIGH
CVE-2023-22845
all versions
An out-of-bounds read vulnerability exists in the TGAInput::decode_pixel() functionality of OpenImageIO Project OpenImageIO v2.4.7
7.5
HIGH
CVE-2022-43603
all versions
A denial of service vulnerability exists in the ZfileOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A
5.9
MEDIUM
CVE-2022-43602
all versions
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
8.1
HIGH
CVE-2022-43601
all versions
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
8.1
HIGH
CVE-2022-43600
all versions
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
8.1
HIGH
CVE-2022-43599
all versions
Multiple code execution vulnerabilities exist in the IFFOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2.
8.1
HIGH
CVE-2022-43598
all versions
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImage
8.1
HIGH
CVE-2022-43597
all versions
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImage
8.1
HIGH
CVE-2022-43596
all versions
An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImag
5.9
MEDIUM
CVE-2022-43595
all versions
Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4
5.9
MEDIUM
CVE-2022-43594
all versions
Multiple denial of service vulnerabilities exist in the image output closing functionality of OpenImageIO Project OpenImageIO v2.4
5.9
MEDIUM
CVE-2022-43593
all versions
A denial of service vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A sp
5.9
MEDIUM
CVE-2022-43592
all versions
An information disclosure vulnerability exists in the DPXOutput::close() functionality of OpenImageIO Project OpenImageIO v2.4.4.2
5.9
MEDIUM
CVE-2022-41999
all versions
A denial of service vulnerability exists in the DDS native tile reading functionality of OpenImageIO Project OpenImageIO v2.3.19.0
7.5
HIGH
CVE-2022-41988
all versions
An information disclosure vulnerability exists in the OpenImageIO::decode_iptc_iim() functionality of OpenImageIO Project OpenImag
7.5
HIGH
CVE-2022-41981
all versions
A stack-based buffer overflow vulnerability exists in the TGA file format parser of OpenImageIO v2.3.19.0. A specially-crafted tar
8.1
HIGH
CVE-2022-41977
all versions
An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. A
3.3
LOW
CVE-2022-41838
all versions
A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A spe
9.8
CRITICAL
CVE-2022-41837
all versions
An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenIma
9.8
CRITICAL
CVE-2022-41794
all versions
A heap based buffer overflow vulnerability exists in the PSD thumbnail resource parsing code of OpenImageIO 2.3.19.0. A specially-
9.8
CRITICAL
CVE-2022-41684
all versions
A heap out of bounds read vulnerability exists in the OpenImageIO master-branch-9aeece7a when parsing the image file directory par
5.5
MEDIUM
CVE-2022-41649
all versions
A heap out of bounds read vulnerability exists in the handling of IPTC data while parsing TIFF images in OpenImageIO v2.3.19.0. A
9.1
CRITICAL
CVE-2022-41639
all versions
A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a
9.8
CRITICAL
CVE-2022-38143
all versions
A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images. A specially-cra
9.8
CRITICAL
CVE-2022-36354
all versions
A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master-branch-9aeece7a and v2.3.19.0. More
5.3
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin