Lucene search
K

2251 matches found

CNNVD
CNNVD
added 2022/09/16 12:0 a.m.6 views

JasPer 安全漏洞

JasPer is a C-based tool for image processing from the individual developer Michael Adams. The software supports the JPEG-2000 format as defined in ISO/IEC 15444-1 and is primarily used for image encoding and processing. A security vulnerability exists in JasPer version 3.0.6, which originates fr...

5.5CVSS6.8AI score0.0035EPSS
Exploits1References2
OSV
OSV
added 2022/09/13 2:35 p.m.3 views

USN-5607-1 gdk-pixbuf vulnerability

It was discovered that GDK-PixBuf incorrectly handled certain images. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

8.8CVSS6AI score0.01891EPSS
Exploits1References2
Apple
Apple
added 2022/09/12 12:0 a.m.55 views

About the security content of tvOS 16

About the security content of tvOS 16 This document describes the security content of tvOS 16. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent...

9.8CVSS9AI score0.03898EPSS
Exploits2References1Affected Software1
Apple
Apple
added 2022/09/12 12:0 a.m.58 views

About the security content of watchOS 9

About the security content of watchOS 9 This document describes the security content of watchOS 9. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.8CVSS9.7AI score0.09785EPSS
Exploits4References1Affected Software1
Apple
Apple
added 2022/09/12 12:0 a.m.52 views

About the security content of macOS Big Sur 11.7

About the security content of macOS Big Sur 11.7 This document describes the security content of macOS Big Sur 11.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

8.8CVSS9.5AI score0.05557EPSS
Exploits8References1Affected Software1
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.4 views

SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools due to a heap buffer overflow in swfDefineLosslessBitsTagToImage in the /modules/swfbits.c file...

5.5CVSS6AI score0.00284EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/08/10 8:15 p.m.2 views

CVE-2022-2719

In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list. This could potentially cause a denial of service. This was fixed in upstream ImageMagick version 7.1.0-30...

5.5CVSS6.7AI score0.00318EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/07/20 12:0 a.m.3 views

PT-2022-21465 · Apple · Macos Monterey +5

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.6 iPadOS versions prior to 15.6 macOS Big Sur versions prior to 11.6.8 macOS Monterey versions prior to 12.5 macOS Catalina versions prior to Security Update 2022-005 Description: A null pointer dereference issue was...

5.5CVSS5.5AI score0.00666EPSS
Exploits0References9
CNNVD
CNNVD
added 2022/07/20 12:0 a.m.3 views

Apple iOS 和 iPadOS 代码问题漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A code issue vulnerability exists in Apple iOS and iPadOS, which stems from the fact that processing images may result in ...

5.5CVSS6.9AI score0.00666EPSS
Exploits0References12
CNVD
CNVD
added 2022/07/15 12:0 a.m.744 views

Adobe Photoshop Resource Management Error Vulnerability

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. Adobe Photoshop suffers from a resource management error vulnerability that can be exploited by an attacker to trigger arbitrary code execution...

7.8CVSS7.7AI score0.00485EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/16 12:0 a.m.14 views

Taizhou Juchao Technology Co., Ltd. picture clear zoom APP has information leakage vulnerability

Picture Clear Enlargement App is an application that offers a wide range of image processing tools. There is an information leakage vulnerability in Picture Clear Zoom APP of Taizhou Juchao Technology Co. that can be exploited by attackers to obtain sensitive information...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/14 7:20 a.m.4 views

Malicious code in storage-image-processing-api-functions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd5fe1baa5d2f967fe24f1b3fdde3e077e889cdf7fc65c779ecd2a002bb2de8b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/14 7:20 a.m.5 views

MAL-2022-6313 Malicious code in storage-image-processing-api-functions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd5fe1baa5d2f967fe24f1b3fdde3e077e889cdf7fc65c779ecd2a002bb2de8b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
CNVD
CNVD
added 2022/06/14 12:0 a.m.18 views

jpeg-js denial of service vulnerability

jpeg-js is a JavaScript-based image processing program . A denial of service vulnerability exists in versions of jpeg-js prior to 0.4.4, which can be exploited by an attacker to conduct a DoS attack, as inputting a specific file will result in entering an infinite loop and never returning...

7.5CVSS7.3AI score0.01762EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/06/10 12:0 a.m.6 views

jpeg-js 安全漏洞

jpeg-js is a JavaScript-based image processing program . A denial of service vulnerability exists in versions of jpeg-js prior to 0.4.4, which can be exploited by an attacker to conduct a DoS attack, as inputting a specific file will result in entering an infinite loop and never returning...

7.5CVSS5.6AI score0.01762EPSS
Exploits1References6
Veracode
Veracode
added 2022/06/05 3:43 p.m.24 views

Integer Overflow

An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is...

7.8CVSS7.6AI score0.0112EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/05/26 5:15 p.m.16 views

CVE-2022-21831

A code injection vulnerability exists in the Active Storage = v5.2.0 that could allow an attacker to execute code via imageprocessing arguments...

9.8CVSS0.02742EPSS
Exploits0References4
OSV
OSV
added 2022/05/26 5:15 p.m.1 views

DEBIAN-CVE-2022-21831

A code injection vulnerability exists in the Active Storage = v5.2.0 that could allow an attacker to execute code via imageprocessing arguments...

9.8CVSS6.8AI score0.02742EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/05/26 5:15 p.m.5 views

CVE-2022-21831

A code injection vulnerability exists in the Active Storage = v5.2.0 that could allow an attacker to execute code via imageprocessing arguments...

9.8CVSS6.9AI score0.02742EPSS
Exploits0References5
Prion
Prion
added 2022/05/26 5:15 p.m.20 views

Code injection

A code injection vulnerability exists in the Active Storage = v5.2.0 that could allow an attacker to execute code via imageprocessing arguments...

6.8CVSS9.3AI score0.02742EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder