CVE-2025-59731
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-06

Last updated on: 2025-10-19

Assigner: Google Inc.

Description
When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rle_raw_sizeΒ from the input file at [0], we decompress and decode into the buffer td->rle_raw_dataΒ of size rle_raw_sizeΒ at [1], and then at [2] we will access entries in this buffer up to (td->xsize - 1) * (td->ysize - 1) + rle_raw_size / 2, which may exceed rle_raw_size. We recommend upgrading to version 8.0 or beyond.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-06
Last Modified
2025-10-19
Generated
2026-06-16
AI Q&A
2025-10-06
EPSS Evaluated
2026-06-15
NVD
CVE-2025-59731
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openexr openexr 8.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability occurs when decoding an OpenEXR file that uses DWAA or DWAB compression. The issue is that the specified raw length of run-length-encoded (RLE) data is not properly checked during the decoding process. Specifically, the code reads the RLE raw size from the input file and decompresses data into a buffer of that size, but later accesses entries beyond the buffer's allocated size, potentially leading to out-of-bounds access.

Impact Analysis

Because the vulnerability involves accessing memory beyond the allocated buffer size during decoding, it can lead to memory corruption, crashes, or potentially allow an attacker to execute arbitrary code or cause denial of service when processing malicious OpenEXR files.

Mitigation Strategies

The recommended immediate step to mitigate this vulnerability is to upgrade to version 8.0 or beyond of the affected software.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-59731. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart