Lucene search
K

120 matches found

OSV
OSV
added 2025/08/25 3:15 p.m.3 views

UBUNTU-CVE-2025-52930

A memory corruption vulnerability exists in the BMPv3 RLE Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decompressing the image data from a specially crafted .bmp file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS6.3AI score0.00691EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.3 views

CVE-2025-46407

A memory corruption vulnerability exists in the BMPv3 Palette Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .bmp file, an integer overflow can be made to occur which will cause a heap-based buffer to overflow when reading the palette from the...

8.8CVSS7.7AI score0.00614EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.4 views

CVE-2025-32468

A memory corruption vulnerability exists in the BMPv3 Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .bmp file, an integer overflow can be made to occur when calculating the stride for decoding. Afterwards, this will cause a heap-based...

8.8CVSS8.3AI score0.00636EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.5 views

CVE-2025-52930

A memory corruption vulnerability exists in the BMPv3 RLE Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decompressing the image data from a specially crafted .bmp file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS8.4AI score0.00691EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.7 views

PT-2025-32660

Name of the Vulnerable Software and Affected Versions: Simcenter Femap versions prior to 2406.0003 Simcenter Femap versions prior to 2412.0002 Description: The affected applications contain an out-of-bounds read issue when processing specially crafted BMP files. This could allow an attacker to...

7.8CVSS6.7AI score0.00142EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/22 7:31 p.m.7 views

CVE-2021-27594

When a user opens manipulated Windows Bitmap .BMP files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application...

4.3CVSS6.9AI score0.00611EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:10 p.m.6 views

CVE-2020-11528

bit2spr 1992-06-07 has a stack-based buffer overflow 129-byte write in convbitmap in bit2spr.c via a long line in a bitmap file...

7.5CVSS7.4AI score0.01249EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/06 5:7 a.m.14 views

CVE-2021-28835

Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file...

7.8CVSS7.6AI score0.00318EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

Kofax Power PDF 安全漏洞

Kofax Power PDF is a professional PDF editing and management software from Kofax. A security vulnerability exists in Kofax Power PDF that stems from a BMP File Parsing out-of-bounds write remote code execution vulnerability...

7.8CVSS8.2AI score0.00486EPSS
Exploits0References2
OSV
OSV
added 2024/03/07 7:27 p.m.6 views

CLSA-2024-1709839661 Fix CVE(s): CVE-2023-5341

SECURITY UPDATE: Heap use-after-free flaw in coders/bmp.c in ImageMagick - debian/patches/CVE-2023-5341.patch: Check BMP file size to fix ImproperImageHeader caused by poc provided by Hardik Shah of Vehere Dawn Treaders team - CVE-2023-5341...

6.2CVSS6.6AI score0.00437EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/02/21 12:0 a.m.7 views

The vulnerability in the `src/video/SDL_pixels.c` component of the Simple DirectMedia Layer library allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability in the src/video/SDLpixels.c file of the Simple DirectMedia Layer library is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrity, and even cause service failures due to the...

10CVSS6.9AI score0.01986EPSS
Exploits0References10Affected Software4
NVD
NVD
added 2023/08/11 2:15 p.m.23 views

CVE-2021-28835

Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file...

7.8CVSS7.8AI score0.00318EPSS
Exploits0References2
Prion
Prion
added 2023/08/11 2:15 p.m.23 views

Buffer overflow

Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file...

4.4CVSS7.8AI score0.00318EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/11 12:0 a.m.27 views

CVE-2021-28835

Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file...

7.8CVSS8AI score0.00318EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/11 12:0 a.m.13 views

CVE-2021-28835

Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file...

7.8CVSS7.7AI score0.00318EPSS
Exploits0References2
CVE
CVE
added 2023/08/11 12:0 a.m.34 views

CVE-2021-28835

CVE-2021-28835 is a real vulnerability affecting XNView prior to 2.50. The available connected documents indicate a buffer overflow in the GEM bitmap file handling, enabling a local attacker to execute arbitrary code. The root cause is the overflow in GEM bitmap processing; the impact is describe...

7.8CVSS7.8AI score0.00318EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.5 views

SUSE CVE-2007-6523

Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x before 9.25 allows remote attackers to cause a denial of service CPU consumption via a crafted bitmap BMP file that triggers a large number of calculations and checks...

7.8CVSS6.6AI score0.02055EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:15 a.m.4 views

SUSE CVE-2015-5697

The getbitmapfile function in drivers/md/md.c in the Linux kernel before 4.1.6 does not initialize a certain bitmap data structure, which allows local users to obtain sensitive information from kernel memory via a GETBITMAPFILE ioctl call...

1.9CVSS6AI score0.00464EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:13 a.m.3 views

SUSE CVE-2015-7552

Heap-based buffer overflow in the gdkpixbufflip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file...

7.8CVSS8.3AI score0.03868EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:0 a.m.3 views

SUSE CVE-2016-5319

Heap-based buffer overflow in tifpackbits.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted bmp file...

6.5CVSS9.4AI score0.0371EPSS
Exploits0References10
Rows per page
Query Builder