All vulnerabilities
CVE-2021-25288
Pillow Out-of-bounds Read vulnerability
Description
An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_gray_i.
Patch Available
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgrading
Score
9.1
Severity
Critical
Ecosystem
Python
Publish Date
June 2, 2021
Modified Date
December 5, 2023
Score Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Affected Versions

