Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/04/15 6:58 p.m.6 views

CVE-2026-40917

A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the icnsslurp function, occurs when processing specially crafted ICNS image files. An attacker could provide a malicious ICNS file, potentially leading to application crashes or information disclosure on systems that process...

7.1CVSS5.8AI score0.00167EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2026/03/10 12:0 a.m.10 views

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:...

8.8CVSS6.4AI score0.01157EPSS
Exploits0References12
Zero Day Initiative
Zero Day Initiative
added 2019/09/11 12:0 a.m.22 views

Microsoft Windows gdi32 Icon Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS3.1AI score0.01618EPSS
Exploits0References1
OSV
OSV
added 2017/06/15 1:29 a.m.5 views

CVE-2017-8464

Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows local users or remote attackers to execute arbitrary code via a crafted .LNK fil...

8.8CVSS6.2AI score0.90026EPSS
Exploits20References6
BDU FSTEC
BDU FSTEC
added 2017/06/15 12:0 a.m.5 views

The vulnerability of the Windows Shell component of the Windows operating system, which allows a hacker to execute arbitrary code

The vulnerability of the Windows Shell component of the Windows operating system is related to errors in the processing of LNK files. Exploiting this vulnerability allows a local attacker to execute arbitrary code by connecting a storage device to the system, which contains a specially crafted ic...

7.2CVSS7.4AI score0.90026EPSS
Exploits20References3
OSV
OSV
added 2010/05/26 6:30 p.m.1 views

DEBIAN-CVE-2010-1640

Off-by-one error in the parseicon function in libclamav/peicons.c in ClamAV 0.96 allows remote attackers to cause a denial of service crash via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling...

4.3CVSS6.8AI score0.02889EPSS
Exploits0References1
Rows per page
Query Builder