CVE-2021-21784

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Accusoft ImageGear version 19.8

Description An out-of-bounds write issue exists in the JPG format SOF marker processing. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this issue.

Recommendations For Accusoft ImageGear version 19.8, avoid processing untrusted or malicious JPG files until a patch is available. As a temporary workaround, consider validating all input files to prevent memory corruption.

Exploit

Fix

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-787

Related Identifiers

CVE-2021-21784

Affected Products

Accusoft Imagegear

CVE-2021-21784

Weakness Enumeration

Related Identifiers

Affected Products

References · 3