Lucene search
K

16 matches found

NVD
NVD
added 2026/06/19 2:16 p.m.19 views

CVE-2025-62821

Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntryGetDataSize can return success while leaving the reported data size as 0. This causes a caller to make a 1-byte allocation. Later, CopyPixels computes copysize = stride absroiheight but does not check the...

9.1CVSS0.00823EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.16 views

PT-2026-50877

Name of the Vulnerable Software and Affected Versions Microsoft HEIF Image Extensions version 1.2.22.0 Description An out-of-bounds read occurs because the CHEIFItemInfoEntry GetDataSize function can return a success status while leaving the reported data size at 0. This leads a caller to perform...

9.1CVSS6AI score0.00823EPSS
Exploits1References5
CVE
CVE
added 2026/06/19 12:0 a.m.14 views

CVE-2025-62821

CVE-2025-62821 affects Microsoft HEIF Image Extensions 1.2.22.0. The issue is an out-of-bounds read caused by CHEIFItemInfoEntry_GetDataSize returning success while reporting data size as 0, leading to a 1-byte allocation. Later, CopyPixels computes copy_size = stride * abs(roi_height) without va...

9.1CVSS6AI score0.00823EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/06/19 12:0 a.m.29 views

CVE-2025-62821

Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntryGetDataSize can return success while leaving the reported data size as 0. This causes a caller to make a 1-byte allocation. Later, CopyPixels computes copysize = stride absroiheight but does not check the...

0.00823EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-9056

Malware in sbrugna...

7.8CVSS7.5AI score0.00931EPSS
Exploits0References2
OSV
OSV
added 2022/03/09 5:15 p.m.5 views

CVE-2022-24457

HEIF Image Extensions Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.02131EPSS
Exploits0References1
NVD
NVD
added 2022/03/09 5:15 p.m.16 views

CVE-2022-24457

HEIF Image Extensions Remote Code Execution Vulnerability...

7.8CVSS0.02131EPSS
Exploits0References1
Prion
Prion
added 2022/03/09 5:15 p.m.18 views

Remote code execution

HEIF Image Extensions Remote Code Execution Vulnerability...

6.8CVSS8AI score0.02131EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/03/09 5:7 p.m.21 views

CVE-2022-24457 HEIF Image Extensions Remote Code Execution Vulnerability

...

7.8CVSS8AI score0.02131EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/03/09 5:7 p.m.3 views

CVE-2022-24457 HEIF Image Extensions Remote Code Execution Vulnerability

...

7.8CVSS7.1AI score0.02131EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2022/03/08 8:0 a.m.140 views

HEIF Image Extensions Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.02131EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/03/08 12:0 a.m.238 views

Microsoft Windows HEIF Image Extensions RCE (March 2022)

The Windows HEIF Image Extension app installed on the remote host is affected by a remote code execution vulnerability. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted file...

7.8CVSS8.4AI score0.02131EPSS
Exploits0References2
NVD
NVD
added 2020/11/11 7:15 a.m.21 views

CVE-2020-17101

HEIF Image Extensions Remote Code Execution Vulnerability...

7.8CVSS8.1AI score0.00931EPSS
Exploits0References1
OSV
OSV
added 2020/11/11 7:15 a.m.5 views

CVE-2020-17101

HEIF Image Extensions Remote Code Execution Vulnerability...

7.8CVSS7.2AI score0.00931EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/11/11 6:48 a.m.28 views

CVE-2020-17101 HEIF Image Extensions Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00931EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2020/11/10 12:0 a.m.110 views

KLA12004 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of...

10CVSS9.9AI score0.25285EPSS
Exploits4References89
Rows per page
Query Builder