CVE-2023-40163

Name of the Vulnerable Software and Affected Versions Accusoft ImageGear version 20.1

Description An out-of-bounds write issue exists in the allocate buffer for jpeg decoding functionality. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this issue.

Recommendations For Accusoft ImageGear version 20.1, consider avoiding the use of the allocate buffer for jpeg decoding functionality until a patch is available. As a temporary workaround, restrict the processing of malformed files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.