A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.
References
Link | Resource |
---|---|
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1487 | Exploit Technical Description Third Party Advisory |
Configurations
Information
Published : 2022-08-22 12:15
Updated : 2022-08-23 09:50
NVD link : CVE-2022-26061
Mitre link : CVE-2022-26061
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
hdfgroup
- hdf5