Lucene search
K

2253 matches found

CNVD
CNVD
added 2017/10/11 12:0 a.m.2 views

ImageMagick Denial of Service Vulnerability (CNVD-2017-30501)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the ReadOneJNGImage of coders/png.c file in ImageMagick version 7.0.7-2. A...

6.5CVSS6.8AI score0.02158EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/11 12:0 a.m.2 views

Memory Corruption Vulnerability in PSD Image Processing by PictureQuest Software

Look at the picture is a picture browsing tool. A memory corruption vulnerability exists in the handling of PSD format images. An attacker can cause the program to crash or cause arbitrary code execution by constructing a malformed PSD format...

8AI score
Exploits0
Cvelist
Cvelist
added 2017/10/03 7:0 a.m.27 views

CVE-2017-14994

ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted DICOM image, related to the ability of DCMReadNonNativeImages to yield an image list with zero frames...

6.9AI score0.02876EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2017/09/22 8:49 a.m.33 views

CVE-2017-14265

A stack buffer overflow flaw was found in the way dcraw handled processing of RAW image files. This flaw could potentially be used to crash the dcraw process by supplying it a specially crafted image file...

9.8CVSS2.2AI score0.04336EPSS
Exploits0References1
NVD
NVD
added 2017/09/20 5:29 p.m.23 views

CVE-2017-14607

In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...

8.1CVSS8.5AI score0.0233EPSS
Exploits0References5
Fedora
Fedora
added 2017/09/19 3:25 p.m.28 views

[SECURITY] Fedora 25 Update: vips-8.4.4-1.fc25.1

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

8.8CVSS2.6AI score0.04042EPSS
Exploits1
Fedora
Fedora
added 2017/09/19 3:27 a.m.62 views

[SECURITY] Fedora 26 Update: vips-8.5.8-2.fc26

VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...

9.8CVSS2.6AI score0.13393EPSS
Exploits14
seebug.org
seebug.org
added 2017/09/18 12:0 a.m.69 views

Artifex MuPDf JBIG2 Parser Code Execution Vulnerability(CVE-2016-8729)

Summary An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the...

8.4AI score0.01677EPSS
Exploits1
CNVD
CNVD
added 2017/09/13 12:0 a.m.2 views

ImageMagick ReadMATImage Function Denial of Service Vulnerability

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A denial of service vulnerability exists in the ReadMATImage function in coders/mat.c in ImageMagick, which can be exploited by an attacker to cause a denial of servic...

6.5CVSS6.1AI score0.01053EPSS
Exploits1References1
CNVD
CNVD
added 2017/09/05 12:0 a.m.4 views

ImageMagick memory leak vulnerability (CNVD-2017-25389)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory leak vulnerability exists in the WriteMSLImage of the coders/msl.c file in ImageMagick version 7.0.6-2. An...

6.5CVSS6.8AI score0.01305EPSS
Exploits1References1
Talos
Talos
added 2017/08/30 12:0 a.m.63 views

Gdk-Pixbuf JPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability

Summary An exploitable heap overflow vulnerability exists in the gdkpixbufjpegimageloadincrement functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulnerability. Tested...

8.8CVSS8.1AI score0.04599EPSS
Exploits3
CVE
CVE
added 2017/08/28 7:0 p.m.46 views

CVE-2017-12920

CVE-2017-12920 affects libfpx version 1.3.1_p6; the vulnerability is a denial of service caused by a NULL pointer dereference in CDirectory::GetDirEntry in dir.cxx when parsing a crafted FlashPIX (fpx) image. The connected sources describe a remote trigger via a crafted image; no exploitation sta...

6.5CVSS6.2AI score0.01287EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.7 views

The vulnerability lies in the image processing mechanism when dealing with EMF files related to text output, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader Document Cloud. This allows a perpetrator to execute arbitrary code.

The vulnerability lies in the image processing mechanism when dealing with EMF files related to text output, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader Document Cloud. It arises due to the execution of an operation...

9.3CVSS8.5AI score0.0885EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.5 views

The vulnerability lies in the image processing mechanism when dealing with EMF files related to raster displays, PDF editor programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF viewer programs like Adobe Reader Document Cloud. This vulnerability allows an attacker to execute arbitrary code.

The vulnerability in the image processing mechanism during the processing of EMF files related to raster display transformations, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader, Adobe Reader Document Cloud, arises due to...

9.3CVSS8.5AI score0.07742EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.6 views

The vulnerability lies in the image processing mechanism when dealing with EMF files related to path visualization, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader Document Cloud. This allows a perpetrator to execute arbitrary code.

The vulnerability in the image processing mechanism during the processing of EMF files related to path visualization, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader, Adobe Reader Document Cloud, arises due to the executi...

9.3CVSS8.5AI score0.06918EPSS
Exploits0References4Affected Software2
CNVD
CNVD
added 2017/08/24 12:0 a.m.2 views

ImageMagick memory leak vulnerability (CNVD-2017-25053)

ImageMagick is the United States ImageMagick Studio company's set of open source image processing software. A memory leak vulnerability exists in the 'ReadMATImage' function of the ImageMagick coders/mat.c file, which allows remote attackers to exploit the vulnerability to construct malicious fil...

8.8CVSS6.1AI score0.01268EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/23 12:0 a.m.3 views

GraphicsMagick buffer overflow vulnerability (CNVD-2017-237216)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A buffer overflow vulnerability exists in the 'GetStyleTokens' function in coders/svg.c:314:12 in GraphicsMagick version 1.3.26. An attacker can exploit this...

6.5CVSS7.3AI score0.0185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/08/21 6:48 p.m.19 views

CVE-2017-12864

In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...

8.8CVSS5.1AI score0.02699EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2017/08/18 12:0 a.m.7 views

The vulnerability of the DriverFileUploadServlet server servlet in the web application, which is designed for managing and monitoring printing devices and image processing, allows a perpetrator to delete any file.

The vulnerability of the DriverFileUploadServlet web application, which is designed for managing and monitoring printing devices and image processing, exists due to an incorrect path limitation for the restricted directory. Exploiting this vulnerability could allow a malicious actor to delete any...

7.8CVSS7.7AI score0.12633EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2017/08/18 12:0 a.m.10 views

The vulnerability of the FileUploadController servlet in the web application, which is designed for managing and monitoring printing devices and image processing. SyncThru 6 allows a perpetrator to execute arbitrary code with system privileges.

The vulnerability of the FileUploadController servlet in the web application, which is designed for managing and monitoring printing devices and image processing, exists due to an incorrect path limitation for the restricted directory. Exploiting this vulnerability allows a malicious actor to...

10CVSS8.2AI score0.12633EPSS
Exploits0References4
Rows per page
Query Builder