CVE-2021-3575

EPSS 0.33% · P56 Updated Nov 04, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-3575

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A heap-based buffer overflow was found in openjpeg in color.c:379:42 in sycc420_to_rgb when decompressing a crafted .j2k file. An attacker could use this to execute arbitrary code with the permissions of the application compiled against openjpeg.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

跨界内存写

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenJPEG 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OpenJPEG是一款基于C语言的开源JPEG2000编码解码器。 OpenJPEG 存在缓冲区错误漏洞，攻击者可利用该漏洞通过color.c触发缓冲区溢出，以触发拒绝服务，并可能运行代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	OpenJPEG	Afeects v2.4.0 and prior.	-

II. Public POCs for CVE-2021-3575

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-3575

请登录查看更多情报信息。

https://ubuntu.com/security/CVE-2021-3575x_refsource_MISC
https://github.com/uclouvain/openjpeg/issues/1347x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=1957616x_refsource_MISC
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QB6AI7CWXWMEDZIQY4LQ6DMIEXMDOHUP/vendor-advisoryx_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZ54FGM2IGAP4AWSJ22JKHOPHCR3FGYU/vendor-advisoryx_refsource_FEDORA
https://nvd.nist.gov/vuln/detail/CVE-2021-3575

Same Patch Batch · n/a · 2022-03-04 · 45 CVEs total

CVE-2022-23915	7.2 HIGH	Remote Code Execution (RCE)
CVE-2022-26484	4.9 MEDIUM	Veritas InfoScale Operations Manager路径遍历漏洞
CVE-2022-26483	4.8 MEDIUM	Veritas Infoscale Operations Manager 跨站脚本漏洞
CVE-2021-3656		KVM 安全漏洞
CVE-2022-23729		LG mobile 授权问题漏洞
CVE-2021-27757		HCL BigFix Insights 安全漏洞
CVE-2021-27756		HCL BigFix Compliance 加密问题漏洞
CVE-2021-44827		Tp-link Archer C2 操作系统命令注入漏洞
CVE-2021-40846		Rhinode Trading Paints 安全漏洞
CVE-2021-46384		MingSoft MCMS 访问控制错误漏洞
CVE-2021-46353		D-Link Dir-X1860 安全漏洞
CVE-2022-23233		Netapp StorageGRID 安全漏洞
CVE-2022-23232		Netapp StorageGRID 授权问题漏洞
CVE-2021-3428		Linux kernel 输入验证错误漏洞
CVE-2021-20319		coreos-installer 数据伪造问题漏洞
CVE-2022-21828		Incapptic Connect 安全漏洞
CVE-2022-25623		Symantec Management Center 安全漏洞
CVE-2021-3744		Linux kernel 安全漏洞
CVE-2021-3743		Linux kernel 缓冲区错误漏洞
CVE-2022-22946		Vmware VMware Spring Cloud Gateway 信任管理问题漏洞

Showing top 20 of 45 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: OpenJPEG

Same vendor: n/a

Same weakness: CWE-787

V. Comments for CVE-2021-3575

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-3575

I. Basic Information for CVE-2021-3575

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-3575

III. Intelligence Information for CVE-2021-3575

Same Patch Batch · n/a · 2022-03-04 · 45 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-3575

Leave a comment