CVE-2025-12495 | AcademySoftwareFoundation OpenEXR EXR File Parser heap-based overflow

November 12, 2025 Yanac

A vulnerability categorized as critical has been discovered in AcademySoftwareFoundation OpenEXR. Affected by this issue is some unknown functionality of the component EXR File Parser. Such manipulation leads to heap-based buffer overflow.

This vulnerability is uniquely identified as CVE-2025-12495. The attack can be launched remotely. No exploit exists.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More