Lucene search
K

121 matches found

Cvelist
Cvelist
added 2020/04/04 4:48 p.m.16 views

CVE-2020-11528

bit2spr 1992-06-07 has a stack-based buffer overflow 129-byte write in convbitmap in bit2spr.c via a long line in a bitmap file...

7.7AI score0.01249EPSS
Exploits1References2
OSV
OSV
added 2020/02/12 3:15 a.m.5 views

DEBIAN-CVE-2015-7508

Heap-based buffer overflow in the bmpdecoderle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file...

8.8CVSS8.9AI score0.02876EPSS
Exploits2References1
CNVD
CNVD
added 2019/12/02 12:0 a.m.5 views

Free Photo Viewer Code Issue Vulnerability

Free Photo Viewer is a lightweight photo viewer. A code issue vulnerability exists in Free Photo Viewer. The vulnerability can be exploited to execute arbitrary code via specially crafted BMP and/or TIFF files...

7.8CVSS7.8AI score0.01734EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.4 views

The vulnerability in the software for creating 3D computer graphics with Blender arises from a full-integer overflow, allowing an attacker to execute arbitrary code.

The vulnerability of Blender’s software for creating 3D computer graphics arises from a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created BMP file...

7.8CVSS7.8AI score0.01866EPSS
Exploits1References6Affected Software2
Prion
Prion
added 2019/11/21 3:15 p.m.22 views

Stack overflow

If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

7.2CVSS7.8AI score0.00221EPSS
Exploits0References1
CVE
CVE
added 2019/11/21 2:38 p.m.57 views

CVE-2019-2251

CVE-2019-2251 describes a stack-buffer overflow when a bitmap is loaded from an unauthenticated source, affecting Qualcomm/SoC families listed in the initial records (e.g., Snapdragon Auto/Compute/Connectivity and related devices). The vulnerability is tied to closed-source Qualcomm components an...

7.8CVSS7.8AI score0.00221EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/21 2:38 p.m.28 views

CVE-2019-2251

If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

7.9AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2019/11/05 9:15 p.m.6 views

CVE-2019-5088

An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...

7.8CVSS7.5AI score0.01955EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2019/08/19 12:0 a.m.24 views

Adobe Acrobat Pro DC AcroForm Bitmap File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

7.8CVSS5.6AI score0.08747EPSS
Exploits0References1
OSV
OSV
added 2018/12/25 12:0 a.m.6 views

UBUNTU-CVE-2018-20467

In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file...

6.5CVSS6.8AI score0.03099EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2018/04/04 12:0 a.m.7 views

The vulnerability of the ReadImage function in the Sam2p image conversion utility allows a attacker to cause a service failure or exert other effects.

The vulnerability of the ReadImage function input-bmp.ci in the Sam2p image conversion utility is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause service interruptions or other adverse effects...

9.8CVSS5.5AI score0.0222EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2018/03/30 8:29 a.m.2 views

CVE-2018-9141

On Samsung mobile devices with L5.x, M6.0, and N7.x software, Gallery allows remote attackers to execute arbitrary code via a BMP file with a crafted resolution, aka SVE-2017-11105...

9.3CVSS6.1AI score0.02399EPSS
Exploits0References2
OSV
OSV
added 2018/02/04 12:0 a.m.3 views

UBUNTU-CVE-2018-6616

In OpenJPEG 2.3.0, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

5.5CVSS6.7AI score0.01745EPSS
Exploits1References4
CNVD
CNVD
added 2018/01/19 12:0 a.m.1 views

OpenJPEG integer overflow vulnerability (CNVD-2018-04305)

OpenJPEG is an open source JPEG 2000 codec written in C language. An integer overflow vulnerability exists in OpenJPEG 2.3.0. The vulnerability arises due to an out-of-bounds left shift in the opjj2ksetupencoder function openjp2/j2k.c. A remote attacker could exploit this vulnerability via a...

6.5CVSS7.1AI score0.02331EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/12 12:0 a.m.6 views

Blender Sequencer imb_bmp_decode Integer Overflow Vulnerability

Blender is an open source cross-platform all-in-one 3D animation software, providing a series of animated short film production solutions from modeling, animation, materials, rendering, to audio processing, video editing and so on. Blender Sequencer imbbmpdecode has an integer overflow...

8.8CVSS7.9AI score0.01866EPSS
Exploits1References1
CNVD
CNVD
added 2018/01/10 12:0 a.m.5 views

Memory Corruption Vulnerability in 2345 Viewer V9.0

2345 Viewer is one of the fastest and most format-compatible high-definition image viewing software. A memory corruption vulnerability exists in 2345 Viewer V9.0 when parsing the BMP file format, which allows an attacker to construct a malicious BMP image file to trigger a memory corruption,...

8.2AI score
Exploits0
OSV
OSV
added 2017/08/30 9:29 a.m.2 views

DEBIAN-CVE-2016-10507

Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted bmp file...

6.5CVSS7.1AI score0.02112EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/08/01 12:6 p.m.4 views

gdk-pixbuf: Heap-based buffer overflow in the gdk_pixbuf_flip function

Heap-based buffer overflow in the gdkpixbufflip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file...

9.3CVSS7.8AI score0.03868EPSS
Exploits0References4
OSV
OSV
added 2017/05/23 4:29 a.m.5 views

CVE-2017-9170

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:370:25...

9.8CVSS6AI score0.02118EPSS
Exploits0References1
OSV
OSV
added 2017/05/23 4:29 a.m.4 views

CVE-2017-9183

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:309:7...

9.8CVSS5.8AI score0.01928EPSS
Exploits0References1
Rows per page
Query Builder