Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Veracode
Veracodeadded 2023/11/07 6:26 a.m.26 views

NULL Pointer Dereference

libjasper.so is vulnerable to NULL Pointer Dereference. The vulnerability is due to jp2decode function in jp2dec.c as there is no validation for the index obtained through the chantocmptlut array before it is used to access and set component types. An attacker can exploit this via specially craft...

5.5CVSS7.7AI score0.00266EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linuxadded 2021/11/09 6:46 p.m.1 views

jasper: NULL pointer dereference in jp2_decode() in jp2_dec.c

A flaw was found in jasper before 2.0.25. A null pointer dereference in jp2decode in jp2dec.c may lead to program crash and denial of service...

5.5CVSS7.3AI score0.00324EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2021/01/27 10:24 p.m.27 views

CVE-2021-3272

jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components...

5.5CVSS1.6AI score0.00319EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2021/01/27 8:15 a.m.32 views

CVE-2021-3272

jp2decode in jp2/jp2dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components...

5.5CVSS6.8AI score0.00319EPSS
Exploits1References2
Veracode
Veracodeadded 2019/06/07 3:22 a.m.26 views

Denial Of Service (DoS)

libjasper.so is vulnerable to denial of service. A NULL pointer dereference in the function jp2decode in libjasper/jp2/jp2dec.c allows an attacker to crash the process...

6.5CVSS6.6AI score0.00965EPSS
Exploits1References6Affected Software2
Cvelist
Cvelistadded 2018/11/26 3:0 a.m.15 views

CVE-2018-19543

An issue was discovered in JasPer 2.0.14. There is a heap-based buffer over-read of size 8 in the function jp2decode in libjasper/jp2/jp2dec.c...

7.5AI score0.004EPSS
Exploits1References4
Check Point Advisories
Check Point Advisoriesadded 2017/07/23 12:0 a.m.2 views

JasPer jp2_decode Out of Bounds Read (CVE-2017-9782)

An out-of-bounds array indexing vulnerability has been reported in JasPer. The vulnerability is due to improper handling of objects in memory within the jp2decode function of jp2dec.c. A remote attacker could exploit this vulnerability by supplying a crafted image file to an application using the...

4.3CVSS2.4AI score0.00396EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2017/06/21 8:29 p.m.31 views

CVE-2017-9782

JasPer 2.0.12 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted image, related to the jp2decode function in libjasper/jp2/jp2dec.c...

5.5CVSS7AI score0.00396EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2017/03/01 3:59 p.m.16 views

CVE-2017-5502

libjasper/jp2/jp2dec.c in JasPer 1.900.17 allows remote attackers to cause a denial of service crash via vectors involving left shift of a negative value...

5.5CVSS6.1AI score0.00209EPSS
Exploits1References3
CVE
CVEadded 2017/03/01 3:0 p.m.49 views

CVE-2017-5502

CVE-2017-5502 affects JasPer 1.900.17: libjasper/jp2/jp2_dec.c allows remote attackers to crash the process via left-shift of a negative value (denial of service). Details across connected sources confirm the vulnerable component/version and the crash impact; no patch/mitigation is provided in th...

5.5CVSS5.3AI score0.00209EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder