Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how openexr compares to other vendors in security performance

View Risk Score →

OpenEXR OpenEXROpenEXR: Shift exponent overflow in `readVariableLengthInteger()` (`ImfIDManifest.cpp`)

Risk 86
Severity
6.3
First published (updated )
CVE-2026-42217

OpenEXR OpenEXROpenEXR: Out-of-bounds read in `IDManifest::init()` during prefix expansion

Risk 66
Severity
8.8
First published (updated )
CVE-2026-42216

OpenEXR OpenEXROpenEXR is Vulnerable to Integer overflow in ImageChannel::resize leads to heap OOB write via OpenEXRUtil public API

Risk 77
Severity
8.8
First published (updated )
CVE-2026-41142

OpenEXR OpenEXROpenEXR has integer overflow in DWA decoder outBufferEnd pointer arithmetic (missed variant of CVE-2026-34589)

Risk 74
Severity
8.4
First published (updated )
CVE-2026-40250

OpenEXR OpenEXROpenEXR has integer overflow in DWA setupChannelData planarUncRle pointer arithmetic (missed variant of CVE-2026-34589)

Risk 74
Severity
8.4
First published (updated )
CVE-2026-40244
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenEXR OpenEXROpenEXR has HTJ2K Signed Integer Overflow in ht_undo_impl()

Risk 27
Severity
5.3
First published (updated )
CVE-2026-39886

OpenEXR OpenEXROpenEXR provides the specification and reference implementation of the EXR file format, an image sto…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2455408

OpenEXR OpenEXROpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write

Risk 74
Severity
8.4
First published (updated )
CVE-2026-34589

OpenEXR OpenEXROpenEXR has a signed 32-bit Overflow in PIZ Decoder Leads to OOB Read/Write

Risk 76
Severity
8.6
First published (updated )
CVE-2026-34588

OpenEXR OpenEXROpenEXR has a signed integer overflow (undefined behavior) in undo_pxr24_impl may allow bounds-check bypass in PXR24 decompression

Risk 41
Severity
5.9
First published (updated )
CVE-2026-34380
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenEXR OpenEXROpenEXR has a misaligned write in LossyDctDecoder_execute leading to undefined behavior (DWA/DWAB decompression)

Risk 47
Severity
7.1
First published (updated )
CVE-2026-34379

OpenEXR OpenEXROpenEXR has a signed integer overflow in generic_unpack() when parsing EXR files with crafted negative dataWindow.min.x

Risk 37
Severity
6.5
First published (updated )
CVE-2026-34378

pip/openexrOpenEXR: Heap information disclosure in PXR24 decompression via unchecked decompressed size (undo_pxr24_impl)

Risk 47
Severity
8.7
First published (updated )
CVE-2026-34543

pip/openexrOpenEXR: integer overflow to OOB write in uncompress_b44_impl()

Risk 74
Severity
8.4
First published (updated )
CVE-2026-34544

OpenEXR OpenEXROpenEXR: integer overflow lead to OOB in HTJ2K decoder

Risk 74
Severity
8.4
First published (updated )
CVE-2026-34545
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

OpenEXR OpenEXROpenEXR provides the specification and reference implementation of the EXR file format, an image sto…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2444251

pip/OpenEXROpenEXR CompositeDeepScanLine integer-overflow leads to heap OOB write

Risk 54
Severity
8.4
EPSS
0.01%
First published (updated )
CVE-2026-27622

OpenEXR OpenEXROpenEXR has heap-buffer-overflow via signed integer underflow in ImfContextInit.cpp

Risk 27
Severity
6.5
EPSS
0.04%
First published (updated )
CVE-2026-26981

Academy Software Foundation OpenEXRAcademy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Risk 68
Severity
7.8
First published (updated )
CVE-2025-12840

Academy Software Foundation OpenEXRAcademy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Risk 68
Severity
7.8
First published (updated )
CVE-2025-12839
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Academy Software Foundation OpenEXRAcademy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Risk 68
Severity
7.8
First published (updated )
CVE-2025-12495

OpenEXR OpenEXROpenEXR has use after free in PyObject_StealAttrString

Risk 43
Severity
5.5
First published (updated )
CVE-2025-64183

OpenEXR OpenEXROpenEXR has buffer overflow in PyOpenEXR_old's channels() and channel()

Risk 68
Severity
5.5
First published (updated )
CVE-2025-64182

OpenEXR OpenEXROpenEXR Makes Use of Uninitialized Memory

Risk 43
Severity
2
First published (updated )
CVE-2025-64181

pip/OpenEXROpenEXR's Unbounded File Header Values can Lead to Out-Of-Memory Errors

Risk 31
Severity
5.5
First published (updated )
CVE-2025-48074
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

pip/OpenEXROpenEXR ScanLineProcess::run_fill NULL Pointer Write In "reduceMemory" Mode

Risk 36
Severity
6.2
First published (updated )
CVE-2025-48073

pip/OpenEXROpenEXR's Inaccurate Pointer Arithmetic can Cause an Out of Bounds Heap

Risk 66
Severity
9.1
First published (updated )
CVE-2025-48072

pip/OpenEXROpenEXR's Forged Unpacked Size can Lead to Heap-Based Buffer Overflow in Deep Scanline Parsing

Risk 74
Severity
8.4
First published (updated )
CVE-2025-48071

Academy Software Foundation OpenEXRInteger Overflow

Risk 13
Severity
3.3
EPSS
0.04%
First published (updated )
CVE-2024-31047

Apple visionOSOpenEXR Heap Overflow in Scanline Deep Data Parsing

Risk 69
Severity
9.1
First published (updated )
CVE-2023-5841
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203