Login Sign Up

CVE-2025-54874

9.8 CRITICAL
Denial of Service

📋 TL;DR

This vulnerability in OpenJPEG allows an attacker to write data beyond allocated heap memory boundaries when processing specially crafted JPEG 2000 files. This can lead to remote code execution, denial of service, or information disclosure. Any application using vulnerable OpenJPEG versions to process untrusted JPEG 2000 files is affected.

💻 Affected Systems

Products:
  • OpenJPEG
  • Applications using OpenJPEG library (e.g., OpenCV, image processing tools)
Versions: 2.5.1 through 2.5.3
Operating Systems: All platforms running affected OpenJPEG versions
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerability triggers when processing malformed JPEG 2000 files; default configurations are vulnerable.

📦 What is this software?

Openjpeg by Uclouvain

View all CVEs affecting Openjpeg →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the privileges of the application processing the malicious file, potentially leading to complete system compromise.

🟠

Likely Case

Application crash (denial of service) or memory corruption leading to unpredictable behavior.

🟢

If Mitigated

Limited impact if proper input validation and sandboxing prevent malicious file processing.

🌐 Internet-Facing: HIGH - Any service accepting JPEG 2000 uploads could be exploited remotely.
🏢 Internal Only: MEDIUM - Internal applications processing untrusted files remain vulnerable.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires crafting a malformed JPEG 2000 file; no public exploit code is currently available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2.5.4 or later

Vendor Advisory: https://github.com/uclouvain/openjpeg/commit/f809b80c67717c152a5ad30bf06774f00da4fd2d

Restart Required: Yes

Instructions:

1. Update OpenJPEG to version 2.5.4 or later. 2. Rebuild any applications linked against OpenJPEG. 3. Restart affected services.

🔧 Temporary Workarounds

Disable JPEG 2000 processing

all

Configure applications to reject or not process JPEG 2000 files.

Input validation

all

Implement strict file validation before passing to OpenJPEG.

🧯 If You Can't Patch

  • Isolate systems processing JPEG 2000 files in restricted network segments.
  • Implement application sandboxing to limit potential damage from exploitation.

🔍 How to Verify

Check if Vulnerable:

Check OpenJPEG version with 'opj_decompress -v' or examine library version in linked applications.

Check Version:

opj_decompress -v 2>&1 | grep Version

Verify Fix Applied:

Confirm OpenJPEG version is 2.5.4 or later and test with known malformed JPEG 2000 files.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes with segmentation faults
  • Memory corruption errors in logs

Network Indicators:

  • Unusual JPEG 2000 file uploads to vulnerable services

SIEM Query:

source="application.log" AND ("segmentation fault" OR "heap corruption") AND process="*openjpeg*"

📊 Metadata

CVE ID: CVE-2025-54874
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-457
EPSS Score: 0.06% exploit probability (19.6th percentile)
Published: August 5, 2025
Last Updated: September 26, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-54874, you might also want to check these:

CVE-2022-40510 9.8

CVE-2022-40510 is a critical memory corruption vulnerability in Qualcomm audio components that allow...

Same vulnerability type (CWE-457)
CVE-2022-21217 9.8

CVE-2022-21217 is a critical out-of-bounds write vulnerability in Reolink RLC-410W IP cameras that a...

Same vulnerability type (CWE-457)
CVE-2025-53644 9.8

OpenCV versions 4.10.0 and 4.11.0 contain an uninitialized pointer vulnerability (CWE-457) that allo...

Same vulnerability type (CWE-457)