Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

CNVD
CNVDadded 2024/11/27 12:0 a.m.10 views

IrfanView out-of-bounds write vulnerability (CNVD-2025-03966)

IrfanView is an image viewer. It supports image browsing, image editing, image format conversion and so on. IrfanView suffers from a buffer overflow vulnerability that stems from the SID file parsing function containing a stack-based buffer overflow. An attacker can exploit this vulnerability to...

7.8CVSS7.6AI score0.00354EPSS
Exploits0References1
OSV
OSVadded 2024/11/22 10:15 p.m.1 views

CVE-2024-9767

IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS7.7AI score
Exploits0References1
NVD
NVDadded 2024/11/22 10:15 p.m.20 views

CVE-2024-9258

IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS0.0036EPSS
Exploits0References1
NVD
NVDadded 2024/11/22 10:15 p.m.30 views

CVE-2024-9261

IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS0.00354EPSS
Exploits0References1
OSV
OSVadded 2024/11/22 10:15 p.m.3 views

CVE-2024-9261

IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.3AI score0.00354EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/22 9:11 p.m.11 views

CVE-2024-9261 IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8AI score0.00354EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/11/22 9:11 p.m.19 views

CVE-2024-9261 IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS0.00354EPSS
Exploits0References1
CVE
CVEadded 2024/11/22 9:11 p.m.45 views

CVE-2024-9260

CVE-2024-9260 affects IrfanView via SID file parsing. The root cause is insufficient validation of user-supplied SID data, leading to a write past the end of an allocated buffer (out-of-bounds write). This vulnerability can allow remote code execution in the context of the current process and req...

7.8CVSS8AI score0.00348EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/22 9:11 p.m.11 views

CVE-2024-9260 IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

7.8CVSS8AI score0.00348EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/11/22 9:11 p.m.14 views

CVE-2024-9259 IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

7.8CVSS0.00348EPSS
Exploits0References1
CVE
CVEadded 2024/11/22 9:11 p.m.52 views

CVE-2024-9259

CVE-2024-9259 pertains to IrfanView and is rooted in the SID-file parsing code. The vulnerability is an out-of-bounds write caused by insufficient validation of SID data, allowing an attacker to write past the end of an allocated buffer and execute code in the process context. Exploitation requir...

7.8CVSS8AI score0.00348EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/22 9:11 p.m.13 views

CVE-2024-9767 IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS8.1AI score0.00364EPSS
Exploits0References1
CVE
CVEadded 2024/11/22 9:11 p.m.51 views

CVE-2024-9767

IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution vulnerability (CVE-2024-9767) affects IrfanView through SID file parsing; the flaw is due to insufficient validation that can cause a read past the end of an allocated buffer, enabling code execution in the process context. Explo...

7.8CVSS8.1AI score0.00364EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/11/22 9:11 p.m.20 views

CVE-2024-9258 IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS0.0036EPSS
Exploits0References1
CVE
CVEadded 2024/11/22 9:11 p.m.58 views

CVE-2024-9258

CVE-2024-9258 affects IrfanView via SID file parsing, where an uninitialized pointer is accessed, enabling remote code execution. The flaw requires user interaction (visiting a malicious page or opening a malicious file) and could execute code in the context of the current process. Root cause is ...

7.8CVSS8AI score0.0036EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/11/22 9:11 p.m.11 views

CVE-2024-9258 IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS8AI score0.0036EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/11/22 12:0 a.m.5 views

IrfanView 缓冲区错误漏洞

IrfanView is an image viewer by the individual developer Irfan Skiljan. It supports image browsing, image editing, image format conversion and more. IrfanView suffers from a buffer error vulnerability that stems from the SID file parsing function containing an uninitialized pointer. An attacker...

7.8CVSS8.1AI score0.0036EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/10/11 12:0 a.m.7 views

IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SID files...

7.8CVSS6.9AI score0.00348EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/10/11 12:0 a.m.9 views

IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SID files...

7.8CVSS7AI score0.00364EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/10/11 12:0 a.m.4 views

PT-2024-39519 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this, where the target must visit a malicious...

7.8CVSS7.3AI score0.00348EPSS
Exploits0References4
Rows per page
Query Builder