all InfoSec news
Vulnerability Spotlight: Specially crafted files could lead to denial of service, information disclosure in OpenImageIO parser
Malware Analysis, News and Indicators - Latest topics malware.news
Lilith >_> of Cisco Talos discovered these vulnerabilities.
Cisco Talos recently discovered three vulnerabilities in the OpenImageIO image-parsing library that many popular pieces of 3-D rendering software use.
OpenImageIO is a library that converts, compares and processes various image files. Blender and AliceVision, two often used computer imaging services, utilize the library, among other software offerings.
Two of the vulnerabilities — TALOS-2023-1707 (CVE-2023-24473) and TALOS-2023-1708 (CVE-2023-22845) — could lead to the disclosure of sensitive information. An adversary could exploit these …
adversary blender cisco cisco talos computer cve denial of service disclosure exploit files information information disclosure library lilith parsing popular processes sensitive information service services software spotlight talos target vulnerabilities vulnerability vulnerability spotlight