An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Information Disclosure
Buffer Overflow
Openimageio
NVD
CVSS 3.1
3.3
EPSS
0.7%
Logins saved by Firefox should be managed by the Password Manager component which uses encryption to save files on-disk. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Information Disclosure
Mozilla
Firefox
NVD
CVSS 3.1
3.3
EPSS
0.1%