CVE-2013-6053 — Improper Input Validation in Openjpeg

CWE-20 — Improper Input Validation7 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 39.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Uclouvain Openjpeg
Timeline
PublishedApr 27
Latest updateMay 13

Description

OpenJPEG 1.5.1 allows remote attackers to obtain sensitive information via unspecified vectors that trigger a heap-based out-of-bounds read.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

â–¶NVDuclouvain/openjpeg1.5.1

🔴Vulnerability Details

2
GHSA
GHSA-4c8x-7565-pgwm: OpenJPEG 1↗2022-05-13
â–¶
CVEList
CVE-2013-6053: OpenJPEG 1↗2014-04-27
â–¶

📋Vendor Advisories

1
Red Hat
openjpeg: out-of-bounds memory read flaws in version 1.5.1↗2013-12-04
â–¶

💬Community

3
Bugzilla
CVE-2013-6045 CVE-2013-6052 CVE-2013-6053 mingw-openjpeg: various flaws [fedora-all]↗2013-12-05
â–¶
Bugzilla
CVE-2013-6887 CVE-2013-1447 CVE-2013-6045 CVE-2013-6052 CVE-2013-6053 openjpeg: various flaws [fedora-all]↗2013-12-05
â–¶
Bugzilla
CVE-2013-6053 openjpeg: out-of-bounds memory read flaws in version 1.5.1↗2013-12-02
â–¶
CVE-2013-6053 — Improper Input Validation in Openjpeg | cvebase