Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OGRECave Ogre Image OgreSTBICodec.cpp encode heap-based overflow
Vulnerability Description
A security flaw has been discovered in OGRECave Ogre up to 14.4.1. This issue affects the function STBIImageCodec::encode of the file /ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp of the component Image Handler. The manipulation results in heap-based buffer overflow. The attack is only possible with local access. The exploit has been released to the public and may be exploited.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
ogre 安全漏洞
Vulnerability Description
ogre是OGRECave开源的一个面向场景的3D引擎。 ogre 14.4.1及之前版本存在安全漏洞,该漏洞源于文件/ogre/PlugIns/STBICodec/src/OgreSTBICodec.cpp中STBIImageCodec::encode函数存在堆缓冲区溢出,可能导致本地攻击。
CVSS Information
N/A
Vulnerability Type
N/A