Cisco Talos security researchers have disclosed a critical zero-day vulnerability in the OpenJPEG library. The vulnerability has been assigned a CVSS score of 7.5, categorizing it as a high-severity bug. Hackers can exploit the vulnerability by tricking the victim into opening a specially crafted, malicious JPEG2000 image or a PDF document containing that malicious file in an email. The hacker could even upload the malicious file to a file hosting service like Dropbox or Google Drive, and then send that link to the victim.
Source: https://thehackernews.com/2016/10/openjpeg-exploit-hack.html