CVE-2020-27824 - AskarLabs CVE Database

CVE-2020-27824

Vendor N/A

Product openjpeg

Weakness CWE-20 · Input validation

Published May 13, 2021

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in OpenJPEG’s encoder in the opj_dwt_calc_explicit_stepsizes() function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability.

Key dates

02Disclosure timeline

May 13, 2021 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-27824

Related vulnerabilities

04Related CVE

CVE-2024-38095 .NET and Visual Studio Denial of Service Vulnerability CVE-2020-7823 DaviewIndy Multiple Vulnerabilities CVE-2023-2728 Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin CVE-2020-10068 Zephyr Bluetooth DLE duplicate requests vulnerability CVE-2025-67493 Homarr: missing input sanitization and possible privilege escalation through ldap search query injection