Lucene search
K

15 matches found

EUVD
EUVD
added 2026/06/25 9:49 p.m.11 views

EUVD-2026-36182

ImageMagick Vulnerable to Stack Overflow in its MVG Decoder...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/25 2:17 p.m.8 views

CVE-2025-50129

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decoding the image data from a specially crafted .tga file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS0.00691EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/07/13 12:0 a.m.5 views

The vulnerability of the CADImage plugin in the IrfanView software, which is used for viewing and playing graphic, video, and audio files, allows a hacker to execute arbitrary code.

The vulnerability of the CADImage plugin for viewing and playing graphic, video, and audio files in IrfanView arises from the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafte...

7.8CVSS8AI score0.0022EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/23 12:0 a.m.4 views

PT-2024-39441 · Faststone · Faststone Image Viewer

Name of the Vulnerable Software and Affected Versions: FastStone Image Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this issue, where th...

8.8CVSS7.3AI score0.00362EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/01/27 12:0 a.m.2 views

Sunlight CMS Security Vulnerability

Sunlight CMS is a content management system from Sunlight CMS open source. A security vulnerability exists in Sunlight CMS version 8.0.1. An attacker exploited the vulnerability to escalate privileges via a specially crafted SVG file in the File Manager component...

5.4CVSS7.1AI score0.00384EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.5 views

PT-2024-19698 · Unknown · A-Blog Cms

Name of the Vulnerable Software and Affected Versions: a-blog cms versions prior to 3.1.7 a-blog cms versions prior to 3.0.29 a-blog cms versions prior to 2.11.58 a-blog cms versions prior to 2.10.50 a-blog cms version 2.9.0 and earlier Description: The issue is related to improper input...

8.8CVSS8.7AI score0.00918EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.2 views

SUSE CVE-2015-8897

The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service application crash via a crafted png file...

5.5CVSS6.6AI score0.02112EPSS
Exploits0References9
OSV
OSV
added 2022/08/22 7:15 p.m.1 views

UBUNTU-CVE-2022-26061

A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS7.5AI score0.00618EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/03/09 12:0 a.m.4 views

SAP 3D Visual Enterprise Viewer 安全漏洞

SAP 3D Visual Enterprise Viewer is a free 3D visualization viewer for Windows. A denial of service vulnerability exists in SAP 3D Visual Enterprise Viewer 9. The vulnerability stems from improper input validation. An attacker could exploit the vulnerability by means of a specially crafted .CGM...

7.8CVSS5.6AI score0.0137EPSS
Exploits0References6
OSV
OSV
added 2020/10/20 10:15 p.m.0 views

CVE-2020-24414

Adobe Illustrator version 24.1.2 and earlier is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit...

7.8CVSS7.6AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/01/12 12:0 a.m.6 views

The vulnerability of the GIF-decoding function `gdImageCreateFromGifCtx` in the `libgd2` library for creating and working with programmable graphics allows a perpetrator to compromise confidential information.

The vulnerability of the GIF-decoding function gdImageCreateFromGifCtx gdgifin.c in the library for creating and working with programmable graphics, libgd2, is related to the lack of cleanup of allocated color buffer spaces before their use. Exploiting this vulnerability could allow an attacker t...

6.5CVSS7.2AI score0.03418EPSS
Exploits0References10Affected Software2
OSV
OSV
added 2017/12/27 5:8 p.m.0 views

DEBIAN-CVE-2017-17914

In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service ReadOneMNGImage large loop via a crafted mng image file...

6.5CVSS6.5AI score0.0203EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/14 12:0 a.m.1 views

ImageMagick 'read_user_chunk_callback' memory leak vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory disclosure vulnerability exists in the 'readuserchunkcallback' function of the coders\png.c file in the...

8.8CVSS6.4AI score0.01359EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2010/01/14 4:32 p.m.5 views

OpenJDK GIF processing buffer overflow vulnerability (6804998)

Buffer overflow in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.219 and earlier; and 1.3.124 and earlier allows remote attackers to access files or execute arbitrary code via a crafted GIF image, aka CR 6804998...

9.3CVSS6.5AI score0.06787EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2008/07/18 12:0 a.m.6 views

PT-2008-4372 · Mozilla · Firefox

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 3.0 through 3.0 Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash, or possibly execute arbitrary code via a crafted GIF file. This is triggered by a free of...

8.8CVSS8.9AI score0.03592EPSS
Exploits2References14
Rows per page
Query Builder