Lucene search
K

20 matches found

CVE
CVE
added 2026/06/16 4:50 p.m.128 views

CVE-2026-4367

LibXpm vulnerability CVE-2026-4367: a local user can trigger an out-of-bounds read in xpmNextWord() while parsing XPM images, potentially crashing the process and causing DoS. Concrete details across connected docs show the flaw resides in libXpm, with impact limited to availability (I) and no co...

5.5CVSS4.7AI score0.00129EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/12/23 10:15 p.m.2 views

CVE-2025-12840

Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required to exploit this...

7.8CVSS7.5AI score0.00158EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/12/17 12:0 a.m.2 views

GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XCF files. The...

7.8CVSS7.2AI score0.00539EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/06 12:0 a.m.5 views

SAMSUNG Notes 安全漏洞

Samsung Notes is an application program from the South Korean company Samsung SAMSUNG. It is used to provide a recording function. An out-of-bounds read vulnerability exists in Samsung Notes, which stems from a lack of proper validation of user-supplied data when parsing jpeg images, and can be...

5.5CVSS6.7AI score0.00139EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/22 12:0 a.m.4 views

PDF-XChange Editor 缓冲区错误漏洞

PDF-XChange Editor is a PDF file viewing software from PDF-XChange, Inc. that runs on Microsoft Windows systems. PDF-XChange Editor suffers from a buffer error vulnerability that stems from the JB2 file parsing feature containing an out-of-bounds read issue. An attacker exploiting this...

5.5CVSS4.6AI score0.00273EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/22 12:0 a.m.2 views

IrfanView 缓冲区错误漏洞

IrfanView is an image viewer by the individual developer Irfan Skiljan. It supports image browsing, image editing, image format conversion and more. IrfanView suffers from a buffer error vulnerability that stems from the AWD file parsing feature containing an out-of-bounds write issue. An attacke...

7.8CVSS8.3AI score0.00523EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:16 a.m.2 views

CVE-2023-51607

Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

5.5CVSS4.9AI score0.00506EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 2:15 a.m.2 views

CVE-2023-37354

Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00345EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/07/13 12:0 a.m.4 views

PT-2023-25913 · Kofax · Kofax Power Pdf

Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a maliciou...

7.8CVSS7.4AI score0.00267EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/13 12:0 a.m.3 views

PT-2023-25916 · Kofax · Kofax Power Pdf

Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a maliciou...

7.8CVSS7.4AI score0.00345EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/01/26 12:0 a.m.8 views

PT-2022-5338 · Corel · Coreldraw Graphics Suite

Name of the Vulnerable Software and Affected Versions: Corel CorelDRAW Graphics Suite version 23.5.0.506 Description: The issue is related to a buffer overflow in the parsing of PCX files, which can be exploited by remote attackers to execute arbitrary code on affected installations. User...

7.8CVSS7.9AI score0.00873EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/01/26 12:0 a.m.5 views

PT-2022-5414 · Corel · Coreldraw Graphics Suite

Name of the Vulnerable Software and Affected Versions: Corel CorelDRAW Graphics Suite version 23.5.0.506 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

7.8CVSS7.9AI score0.00873EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/12/14 12:0 a.m.4 views

PT-2021-5662 · Adobe · Lightroom

Name of the Vulnerable Software and Affected Versions: Adobe Lightroom versions 4.4 and earlier Description: The issue is related to a use-after-free vulnerability in the processing of parsing TIF files, which could result in privilege escalation. Exploitation of this issue requires user...

7.8CVSS7.6AI score0.00409EPSS
Exploits0References8
OSV
OSV
added 2021/06/08 8:15 p.m.4 views

CVE-2021-27390

A vulnerability has been identified in JT2Go All versions V13.1.0.3, Teamcenter Visualization All versions V13.1.0.3. The TIFFloader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF files. This could result in an out of bounds write past the end...

7.8CVSS7.2AI score0.01811EPSS
Exploits0References2
CNVD
CNVD
added 2019/11/06 12:0 a.m.7 views

LEAD Technologies LEADTOOLS Buffer Overflow Vulnerability

LEAD Technologies LEADTOOLS is an image processing development kit from LEAD Technologies. A buffer overflow vulnerability exists in the TIF parsing function in LEAD Technologies LEADTOOLS. The vulnerability can be exploited to execute code via specially crafted TIF images...

8.8CVSS7.9AI score0.01996EPSS
Exploits1References1
CNVD
CNVD
added 2019/11/06 12:0 a.m.4 views

LEAD Technologies LEADTOOLS Numeric Error Vulnerability

LEAD Technologies LEADTOOLS is an image processing development kit from LEAD Technologies. A numeric error vulnerability exists in the CMP parsing function in LEAD Technologies LEADTOOLS. The vulnerability can be exploited to execute code via specially crafted CMP image files...

8.8CVSS7.5AI score0.02038EPSS
Exploits1References1
OSV
OSV
added 2018/11/26 8:29 p.m.5 views

DEBIAN-CVE-2018-19567

A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...

5.5CVSS6.9AI score0.00925EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2018/08/01 12:0 a.m.6 views

PT-2018-16315 · Computerinsel · Computerinsel Photoline

Name of the Vulnerable Software and Affected Versions: Computerinsel Photoline version 20.54 Description: A memory corruption issue exists in the PCX-parsing functionality. Processing a specially crafted PCX image can lead to an out-of-bounds write, allowing an attacker to overwrite arbitrary dat...

8.8CVSS8.5AI score0.01484EPSS
Exploits1References2
CNVD
CNVD
added 2018/04/13 12:0 a.m.2 views

Computerinsel Photoline TIFF Parsing Function Memory Corruption Vulnerability

PhotoLine is a multipurpose image and graphics editor. A memory corruption vulnerability exists in the TIFF parsing feature in Computerinsel Photoline 20.53. An attacker can exploit this vulnerability to cause out-of-bounds writes and overwrite arbitrary data via specially crafted TIFF images,...

8.8CVSS7.7AI score0.01036EPSS
Exploits1References1
CNVD
CNVD
added 2017/07/12 12:0 a.m.2 views

Poppler Integer Overflow Vulnerability

Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. An integer overflow vulnerability exists in the JPEG 2000 image parsing feature in Poppler version 0.53.0. An attacker can exploit this vulnerability to overwrite the heap across boundaries and execu...

8.8CVSS9AI score0.04415EPSS
Exploits2References1
Rows per page
Query Builder