Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2026/04/13 5:38 a.m.5 views

CVE-2026-4152

A flaw was found in GIMP. A remote attacker could exploit this by tricking a user into opening a specially crafted JP2 JPEG 2000 file. This flaw is due to a heap-based buffer overflow during JP2 file parsing, which allows for arbitrary code execution. Successful exploitation enables the attacker ...

7.8CVSS7.6AI score0.00744EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-16311

Malware in sbrugna...

5.5CVSS5.5AI score0.00897EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-0387

Malware in sbrugna...

10CVSS6.4AI score0.03799EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-4223

Malware in sbrugna...

5.5CVSS7.3AI score0.01487EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-17724

Malware in sbrugna...

7.8CVSS7.7AI score0.01556EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2017-11952

Malware in sbrugna...

8.8CVSS8.3AI score0.01543EPSS
Exploits1References3
OSV
OSV
added 2024/11/22 9:15 p.m.5 views

CVE-2024-9757

Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerabili...

3.3CVSS4.9AI score0.0025EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.4 views

The vulnerability in the `color.c` component of the `sycc420_to_rgb` function in the OpenJPEG library, related to buffer overflows, allows attackers to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of the color.c component in the sycc420torgb function of the OpenJPEG library, which is used for image encoding and decoding, relates to writing beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

7.8CVSS6.9AI score0.01536EPSS
Exploits1References13Affected Software5
Positive Technologies
Positive Technologies
added 2023/08/29 12:0 a.m.8 views

PT-2023-7691 · Adobe · Illustrator

Name of the Vulnerable Software and Affected Versions: Adobe Illustrator versions 28.0 and earlier Adobe Illustrator versions 27.9 and earlier Description: The issue is related to a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user...

7.8CVSS7.8AI score0.00462EPSS
Exploits0References6
OSV
OSV
added 2023/04/04 4:15 p.m.3 views

CVE-2023-26974

Irfanview v4.62 allows a user-mode write access violation via a crafted JPEG 2000 file starting at JPEG2000+0x0000000000001bf0...

5.5CVSS6.1AI score0.00552EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.5 views

SUSE CVE-2016-4796

Heap-based buffer overflow in the colorcmyktorgb in common/color.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service crash via a crafted .j2k file...

5.5CVSS9AI score0.03557EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.8 views

The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malicious J2K file...

10CVSS8AI score0.0077EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.6 views

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation version 10.16.02.034. An attacker could exploit the vulnerability to force an out-of-bounds read to be triggered via a J...

7.8CVSS7.6AI score0.00951EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/02/18 8:15 p.m.3 views

CVE-2022-24062

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro 13.2.0.21165. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.1AI score0.01731EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/02/20 1:15 a.m.21 views

CVE-2016-3182

The coloresycctorgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service memory corruption via a crafted jpeg 2000 file...

5.5CVSS6.3AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/02/20 1:15 a.m.26 views

CVE-2016-3182

The coloresycctorgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service memory corruption via a crafted jpeg 2000 file...

5.5CVSS6.8AI score0.01487EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2020/02/20 12:3 a.m.28 views

CVE-2016-3182

The coloresycctorgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service memory corruption via a crafted jpeg 2000 file...

5.5CVSS6.9AI score0.01487EPSS
Exploits0
Cvelist
Cvelist
added 2020/02/20 12:3 a.m.24 views

CVE-2016-3182

The coloresycctorgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service memory corruption via a crafted jpeg 2000 file...

5.2AI score0.01487EPSS
Exploits0References4
NVD
NVD
added 2017/07/05 8:29 p.m.13 views

CVE-2017-8785

FastStone Image Viewer 6.2 has a "Data from Faulting Address may be used as a return value" issue. This issue can be triggered by a malformed JPEG 2000 file that is mishandled by FSViewer.exe. Attackers could exploit this issue for DoS Access Violation or possibly unspecified other impact...

7.8CVSS7.9AI score0.00767EPSS
Exploits0References1
CNVD
CNVD
added 2016/10/31 12:0 a.m.5 views

OpenJPEG Denial of Service Vulnerability (CNVD-2016-10434)

OpenJPEG library is written in C language open source JPEG 2000 codec . OpenJPEG 2.1.2 suffers from a null pointer access vulnerability in the convert.cjp2:1289 imagetopnm function, which can lead to a denial of service via a constructed j2k file...

6.5CVSS6.7AI score0.02216EPSS
Exploits1References1
Rows per page
Query Builder