CVE-2023-0645
NVD: An out of bounds read exists in libjxl. NVD: An attacker using a specifically crafted file could cause an out of bounds read in the exif handler. NVD: We recommend upgrading to version 0.8.1 or past commit
5.3 Severity
MEDIUM EPSS
0.0080 (52) KEV
-
Source-published summary
NVD: An out of bounds read exists in libjxl. NVD: An attacker using a specifically crafted file could cause an out of bounds read in the exif handler. NVD: We recommend upgrading to version 0.8.1 or past commit
Possible impact
This medium severity issue needs human triage to confirm exposure, affected versions, and vendor guidance for defensive exposure review.
Affected context
vendor/product: libjxl_project / libjxl
Remediation / advisory
Remediation reference present; patch status requires confirmation in the linked advisory.
Why it matters
This medium severity issue needs human triage to confirm exposure, affected versions, and vendor guidance for defensive exposure review.; CVSS 5.3 (MEDIUM); EPSS percentile 52; not listed in KEV; Remediation reference present; patch status requires confirmation in the linked advisory; sources: NVD, OSV.
What to verify
Confirm affected product/version, vendor advisory, patch or mitigation, and exposure.
Exposure hint
exposure unknown
Impact tags
Urgency reasons
Source-derived note
Summary derived from NVD / OSV description; unsafe procedural detail is not shown.
Redaction metadata
- source summary used
- True
- fallback summary used
- False
- unsafe procedural detail present
- false
- raw source displayed
- false
- public summary redacted
- true
Remediation handoff
Public-safe static handoff for human/Codex remediation planning. Scan, patch, external execution, and auto remediation are disabled.
Safety note
This radar shows source-published defensive context only. Exploit procedures, exploit strings, scanner commands, and auto-remediation are not provided.