20 matches found
CVE-2026-4367
LibXpm vulnerability CVE-2026-4367: a local user can trigger an out-of-bounds read in xpmNextWord() while parsing XPM images, potentially crashing the process and causing DoS. Concrete details across connected docs show the flaw resides in libXpm, with impact limited to availability (I) and no co...
CVE-2025-12840
Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required to exploit this...
GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XCF files. The...
SAMSUNG Notes 安全漏洞
Samsung Notes is an application program from the South Korean company Samsung SAMSUNG. It is used to provide a recording function. An out-of-bounds read vulnerability exists in Samsung Notes, which stems from a lack of proper validation of user-supplied data when parsing jpeg images, and can be...
PDF-XChange Editor 缓冲区错误漏洞
PDF-XChange Editor is a PDF file viewing software from PDF-XChange, Inc. that runs on Microsoft Windows systems. PDF-XChange Editor suffers from a buffer error vulnerability that stems from the JB2 file parsing feature containing an out-of-bounds read issue. An attacker exploiting this...
IrfanView 缓冲区错误漏洞
IrfanView is an image viewer by the individual developer Irfan Skiljan. It supports image browsing, image editing, image format conversion and more. IrfanView suffers from a buffer error vulnerability that stems from the AWD file parsing feature containing an out-of-bounds write issue. An attacke...
CVE-2023-51607
Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...
CVE-2023-37354
Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...
PT-2023-25913 · Kofax · Kofax Power Pdf
Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a maliciou...
PT-2023-25916 · Kofax · Kofax Power Pdf
Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a maliciou...
PT-2022-5338 · Corel · Coreldraw Graphics Suite
Name of the Vulnerable Software and Affected Versions: Corel CorelDRAW Graphics Suite version 23.5.0.506 Description: The issue is related to a buffer overflow in the parsing of PCX files, which can be exploited by remote attackers to execute arbitrary code on affected installations. User...
PT-2022-5414 · Corel · Coreldraw Graphics Suite
Name of the Vulnerable Software and Affected Versions: Corel CorelDRAW Graphics Suite version 23.5.0.506 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...
PT-2021-5662 · Adobe · Lightroom
Name of the Vulnerable Software and Affected Versions: Adobe Lightroom versions 4.4 and earlier Description: The issue is related to a use-after-free vulnerability in the processing of parsing TIF files, which could result in privilege escalation. Exploitation of this issue requires user...
CVE-2021-27390
A vulnerability has been identified in JT2Go All versions V13.1.0.3, Teamcenter Visualization All versions V13.1.0.3. The TIFFloader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF files. This could result in an out of bounds write past the end...
LEAD Technologies LEADTOOLS Buffer Overflow Vulnerability
LEAD Technologies LEADTOOLS is an image processing development kit from LEAD Technologies. A buffer overflow vulnerability exists in the TIF parsing function in LEAD Technologies LEADTOOLS. The vulnerability can be exploited to execute code via specially crafted TIF images...
LEAD Technologies LEADTOOLS Numeric Error Vulnerability
LEAD Technologies LEADTOOLS is an image processing development kit from LEAD Technologies. A numeric error vulnerability exists in the CMP parsing function in LEAD Technologies LEADTOOLS. The vulnerability can be exploited to execute code via specially crafted CMP image files...
DEBIAN-CVE-2018-19567
A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...
PT-2018-16315 · Computerinsel · Computerinsel Photoline
Name of the Vulnerable Software and Affected Versions: Computerinsel Photoline version 20.54 Description: A memory corruption issue exists in the PCX-parsing functionality. Processing a specially crafted PCX image can lead to an out-of-bounds write, allowing an attacker to overwrite arbitrary dat...
Computerinsel Photoline TIFF Parsing Function Memory Corruption Vulnerability
PhotoLine is a multipurpose image and graphics editor. A memory corruption vulnerability exists in the TIFF parsing feature in Computerinsel Photoline 20.53. An attacker can exploit this vulnerability to cause out-of-bounds writes and overwrite arbitrary data via specially crafted TIFF images,...
Poppler Integer Overflow Vulnerability
Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. An integer overflow vulnerability exists in the JPEG 2000 image parsing feature in Poppler version 0.53.0. An attacker can exploit this vulnerability to overwrite the heap across boundaries and execu...