CVE-2018-12092 — CVSS 9.8 (critical): tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.
CVE-2020-18430 — CVSS 7.5 (high): tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of…
CVE-2020-18428 — CVSS 7.5 (high): tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of…
CVE-2018-20652 — CVSS 6.5 (medium): An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in tinyexr.h in tinyexr v0.9.5. Remote…
CVE-2020-19490 — CVSS 5.5 (medium): tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code.