29 matches found
CLSA-2026-1779193855 ImageMagick: Fix of CVE-2026-42050
CVE-2026-42050: fix stack buffer overflow in XTileImage when loading malicious MIFF in display tool...
gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow
A flaw was found in GIMP. Remote attackers can exploit this vulnerability by tricking a user into opening a malicious XPM X PixMap image file. This can lead to an an integer overflow during file processing, allowing the attacker to execute arbitrary code on the affected system...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the JXL encoding process when handling images specified as 16-bit floats. An attacker can cause a heap buffer overflow by providing a specially crafted image file. Remediation A fix was pushed into the mast...
EUVD-2026-5382
A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2026-23876
CVE-2026-23876 – ImageMagick heap buffer overflow (ReadXBMImage) Affected software: ImageMagick versions prior to 7.1.2-13 and 6.9.13-38.Root cause: heap buffer overflow in the XBM image decoder during processing of crafted images.Impact: attacker can write data past the allocated heap buffer, po...
EUVD-2025-25409
Malicious code in bioql PyPI...
Denial Of Service (DoS)
jspdf is vulnerable to Denial of Service DoS. The vulnerability is due to improper handling of unsanitized image data or URLs in the addImage method, which allows an attacker to supply a malicious PNG file that triggers high CPU utilization and denial of service...
macOS 13.x < 13.7.8 (124929)
The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.7.8. It is, therefore, affected by a vulnerability: - Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticat...
macOS 14.x < 14.7.8 (124928)
The remote host is running a version of macOS / Mac OS X that is 14.x prior to 14.7.8. It is, therefore, affected by a vulnerability: - Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticat...
Autodesk AutoCAD和Autodesk Revit 缓冲区错误漏洞
Autodesk AutoCAD and Autodesk Revit are both products of Autodesk, Inc. of the U.S.A. Autodesk AutoCAD is a suite of professional 3D drawing software.Autodesk Revit is a suite of building information modeling software. A security vulnerability exists in Autodesk AutoCAD and Autodesk Revit that...
Heap Buffer Overflow
libexiv2.so is vulnerable to a Heap Buffer Overflow. The vulnerability is due to a heap buffer overflow triggered when writing metadata into a crafted image file, allows an attacker could exploit this to achieve code execution if a victim processes a malicious image with Exiv2...
CVE-2024-1453
In Sante DICOM Viewer Pro versions 14.0.3 and prior, a user must open a malicious DICOM file, which could allow a local attacker to disclose information or execute arbitrary code...
The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer in memory, allows a hacker to execute arbitrary code.
The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malicious JPG file...
CVE-2021-39824
Adobe Premiere Elements version 2021.2235820 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious png file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this...
Denial Of Service (DoS)
Exiv2 is vulnerable to denial of service. An out-of-bounds read occurs when writing a the metadata of a malicious image file...
Denial Of Service (DoS)
Exiv2 is vulnerable to denial of service. A NULL pointer dereference occurs when an attacker submits a malicious image file to print its metadata content...
Denial Of Service (DoS)
imagemagick is vulnerable to denial of service. A memory leak in the function SVGKeyValuePairs in coders/svg.c allows an attacker to cause a denial of service via a malicious image file...
Privilege Escalation
ibm java is vulnerable to privilege escalation. A remote attacker is able to obtain higher privileges using a malicious image file...
Denial Of Service (DoS)
ImageMagick is vulnerable to denial of service DoS. A flaw in MagickWand/mogrify.c causes memory leaks, allowing an attacker to input a malicious image file to trigger an application crash...
Denial Of Service (DoS)
ImageMagick is vulnerable to denial of service DoS. The attack exists because the function WriteTIFFImage of coders/tiff.c causes memory leaks in AcquireMagickMemory , allowing an attacker to input a malicious image file to trigger a heap-based buffer over-read...