Findings for Container Security, Medium, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Out-of-bounds Read

[armorcodegithubpreprod[bot]]

Findings for Container Security, Medium, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Out-of-bounds Read

Component Details

• Exploit Maturity: no-known-exploit
• Vulnerable Package: -
  • Current Version: -
  • Vulnerable Version(s): >*
  • Vulnerable Path: >null

    NVD Description

    Note: Versions mentioned in the description apply to the upstream openexr package.

There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5. An attacker who is able to submit a crafted file to an application linked with OpenEXR could cause an out-of-bounds read. The greatest risk from this flaw is to application availability.

References

• ADVISORY
• MISC

Origin : null Type : null Image Id : null

Snyk Project Status: Active

---

---

[armorcodegithubpreprod[bot]]

Finding [47833589|https://preprod.armorcode.ai/#/findings/257/1167/47833589] is Mitigated
by SYSTEM via ArmorCode Platform