Lucene search
K

239 matches found

snyk
snyk
added 2026/01/20 1:1 a.m.4 views

Integer Overflow or Wraparound

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS6AI score0.00609EPSS
Exploits1References3
snyk
snyk
added 2026/01/20 1:1 a.m.7 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

9.8CVSS6AI score0.00609EPSS
Exploits1References3
alpinelinux
alpinelinux
added 2026/01/20 1:1 a.m.3 views

CVE-2026-23876

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder ReadXBMImage allows an attacker to write controlled data past the allocated heap buffer when...

9.8CVSS5.9AI score0.00609EPSS
Exploits1References6
debiancve
debiancve
added 2026/01/20 1:1 a.m.5 views

CVE-2026-23876

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder ReadXBMImage allows an attacker to write controlled data past the allocated heap buffer when...

9.8CVSS5.6AI score0.00609EPSS
Exploits1
snyk
snyk
added 2026/01/20 1:1 a.m.4 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS6AI score0.00609EPSS
Exploits1References3
nessus
nessus
added 2026/01/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23876

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow...

9.8CVSS5AI score0.00609EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2026/01/18 12:0 a.m.8 views

PT-2026-3528

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-13 and 6.9.13-38 Description ImageMagick is a free and open-source software used for editing and manipulating digital images. A heap buffer overflow vulnerability exists in the XBM image decoder ReadXBMImage...

9.8CVSS5.5AI score0.00609EPSS
Exploits1References138
susecve
susecve
added 2026/01/07 12:25 a.m.4 views

SUSE CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.9AI score0.00263EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/01/01 10:45 a.m.6 views

CVE-2025-15278

A flaw was found in FontForge. This integer overflow vulnerability, located in the parsing of pixels within XBM X BitMap files, allows a remote attacker to execute arbitrary code. The issue arises from insufficient validation of user-supplied data, which can lead to an integer overflow before...

7.8CVSS7.9AI score0.00263EPSS
Exploits0References4
nvd
nvd
added 2025/12/31 7:15 a.m.6 views

CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS0.00263EPSS
Exploits0References1
osv
osv
added 2025/12/31 7:15 a.m.4 views

UBUNTU-CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.00263EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2025/12/31 7:15 a.m.7 views

CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.4AI score0.00263EPSS
Exploits0References2
euvd
euvd
added 2025/12/31 6:59 a.m.5 views

EUVD-2025-205888

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.2AI score0.00263EPSS
Exploits0References2
osv
osv
added 2025/12/31 6:59 a.m.5 views

CVE-2025-15278 FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.6AI score0.00263EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/12/31 6:59 a.m.2 views

CVE-2025-15278 FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.8AI score0.00263EPSS
Exploits0References1
alpinelinux
alpinelinux
added 2025/12/31 6:59 a.m.6 views

CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.8AI score0.00263EPSS
Exploits0References1
debiancve
debiancve
added 2025/12/31 6:59 a.m.5 views

CVE-2025-15278

FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.8AI score0.00263EPSS
Exploits0
cnnvd
cnnvd
added 2025/12/31 12:0 a.m.4 views

FontForge 输入验证错误漏洞

FontForge is an open source font editing tool from fontforge open source that supports multiple languages. An input validation error vulnerability exists in FontForge that stems from improper validation of data when parsing XBM file pixels, which could lead to an integer overflow and remote code...

7.8CVSS8AI score0.00263EPSS
Exploits0References1
nessus
nessus
added 2025/12/31 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-15278

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

7.8CVSS7.6AI score0.00263EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2025/12/29 12:0 a.m.7 views

PT-2025-53825

Name of the Vulnerable Software and Affected Versions FontForge affected versions not specified Description A flaw exists in FontForge within the parsing of pixels within XBM files. The issue stems from insufficient validation of user-supplied data, leading to an integer overflow during buffer...

7.8CVSS7.9AI score0.00263EPSS
Exploits0References2
Rows per page
Query Builder