Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-2831

A flaw was found in Blender 3.3.0. An interger overflow in source/blender/blendthumb/src/blendthumb_extract.cc may lead to program crash or memory corruption.

Published

2022-08-16T21:15:09.843

Last Modified

2024-11-21T07:01:46.297

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-190
Type: Primary
CWE-125
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	blender	blender	3.3.0	Yes

References

https://developer.blender.org/T99705 Exploit, Patch, Vendor Advisory ([email protected])
https://developer.blender.org/rB32df09b2416a6961704eca0fe73534c8c4e715b2 Patch, Vendor Advisory ([email protected])
https://developer.blender.org/rBb1329d7eaa52a11c73b75d19d20bd8f6d11ac535 Patch, Vendor Advisory ([email protected])
https://developer.blender.org/T99705 Exploit, Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://developer.blender.org/rB32df09b2416a6961704eca0fe73534c8c4e715b2 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://developer.blender.org/rBb1329d7eaa52a11c73b75d19d20bd8f6d11ac535 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)