CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Heap-based buffer overflow in jpegls.dll in the JpegLS aka JLS plugin in the formats plugins in IrfanView PlugIns before 4.34 allows remote attackers to execute arbitrary code via a crafted JLS file...

9.3CVSS8.3AI score0.07736EPSS

Exploits4References1

NVD•added 2019/10/08 12:15 p.m.•14 views

CVE-2019-17258

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEGLS+0x000000000000839c...

7.8CVSS7.6AI score0.01521EPSS

Exploits0References2

NVD•added 2019/10/08 12:15 p.m.•11 views

CVE-2019-17244

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEGLS+0x0000000000001d8a...

7.8CVSS7.7AI score0.01521EPSS

Exploits0References2

NVD•added 2019/10/08 12:15 p.m.•34 views

CVE-2019-17243

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEGLS+0x0000000000003155...

7.8CVSS7.7AI score0.01521EPSS

Exploits0References2

Prion•added 2019/10/08 12:15 p.m.•10 views

Code injection

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEGLS+0x0000000000001d8a...

6.8CVSS7.6AI score0.01521EPSS

Exploits0References2Affected Software1

Prion•added 2019/10/08 12:15 p.m.•18 views

Code injection

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEGLS+0x0000000000003155...

6.8CVSS7.6AI score0.01521EPSS

Exploits0References2Affected Software1

Prion•added 2019/10/08 12:15 p.m.•15 views

Design/Logic Flaw

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEGLS+0x0000000000007da8...

6.8CVSS7.5AI score0.01521EPSS

Exploits0References2Affected Software1

Prion•added 2019/10/08 12:15 p.m.•16 views

Design/Logic Flaw

IrfanView 4.53 allows a User Mode Write AV starting at JPEGLS+0x000000000000a6b8...

6.8CVSS7.6AI score0.0149EPSS

Exploits0References2Affected Software1

Prion•added 2019/10/08 12:15 p.m.•21 views

Design/Logic Flaw

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEGLS+0x000000000000839c...

6.8CVSS7.5AI score0.01521EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/10/08 11:20 a.m.•15 views

CVE-2019-17258

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEGLS+0x000000000000839c...

7.6AI score0.01521EPSS

Exploits0References2

CVE•added 2019/10/08 11:20 a.m.•49 views

CVE-2019-17258

CVE-2019-17258 affects IrfanView 4.53. The vulnerability arises in a faulting-address control that lets an attacker influence a subsequent write address starting at JPEG_LS+0x839c, enabling memory corruption. Reported impact indicates high confidentiality, integrity, and availability risks (per C...

7.8CVSS7.5AI score0.01521EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/10/08 11:19 a.m.•17 views

CVE-2019-17253

IrfanView 4.53 allows a User Mode Write AV starting at JPEGLS+0x000000000000a6b8...

7.6AI score0.0149EPSS

Exploits0References2

CVE•added 2019/10/08 11:19 a.m.•49 views

CVE-2019-17253

CVE-2019-17253 affects IrfanView 4.53, where a user-mode write access violation can be triggered starting at JPEG_LS+0x000000000000a6b8. Multiple connected sources corroborate a write-access flaw in IrfanView 4.53; CNVD additionally notes potential to read WSQ files, while Red Hat’s entry reitera...

7.8CVSS7.5AI score0.0149EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/10/08 11:19 a.m.•15 views

CVE-2019-17247

IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEGLS+0x0000000000007da8...

7.6AI score0.01521EPSS

Exploits0References2

Cvelist•added 2019/10/08 11:18 a.m.•18 views

CVE-2019-17244

IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEGLS+0x0000000000001d8a...

7.7AI score0.01521EPSS

Exploits0References2

CVE•added 2019/10/08 11:18 a.m.•60 views

CVE-2019-17244

CVE-2019-17244 affects IrfanView 4.53, where Data from a Faulting Address can control Code Flow starting at JPEG_LS+0x1d8a, enabling potential code execution. The issue is documented with CVSS scores (2.0/3.1) indicating a high-severity impact including confidentiality, integrity, and availabilit...

7.8CVSS7.6AI score0.01521EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by