Lucene search
K

29 matches found

OSV
OSV
added 2026/05/19 12:31 p.m.11 views

CLSA-2026-1779193855 ImageMagick: Fix of CVE-2026-42050

CVE-2026-42050: fix stack buffer overflow in XTileImage when loading malicious MIFF in display tool...

5.5CVSS6AI score0.0013EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/05/14 12:9 p.m.13 views

gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow

A flaw was found in GIMP. Remote attackers can exploit this vulnerability by tricking a user into opening a malicious XPM X PixMap image file. This can lead to an an integer overflow during file processing, allowing the attacker to execute arbitrary code on the affected system...

7.8CVSS7.5AI score0.00596EPSS
Exploits0References6
Snyk
Snyk
added 2026/04/13 10:11 p.m.7 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the JXL encoding process when handling images specified as 16-bit floats. An attacker can cause a heap buffer overflow by providing a specially crafted image file. Remediation A fix was pushed into the mast...

6.8CVSS6AI score0.00187EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/04 6:12 p.m.7 views

EUVD-2026-5382

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6AI score0.00178EPSS
Exploits0References2
CVE
CVE
added 2026/01/20 1:1 a.m.124 views

CVE-2026-23876

CVE-2026-23876 – ImageMagick heap buffer overflow (ReadXBMImage) Affected software: ImageMagick versions prior to 7.1.2-13 and 6.9.13-38.Root cause: heap buffer overflow in the XBM image decoder during processing of crafted images.Impact: attacker can write data past the allocated heap buffer, po...

9.8CVSS5.9AI score0.00609EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25409

Malicious code in bioql PyPI...

8.8CVSS6.9AI score0.19972EPSS
Exploits9References9
Veracode
Veracode
added 2025/09/23 6:28 a.m.8 views

Denial Of Service (DoS)

jspdf is vulnerable to Denial of Service DoS. The vulnerability is due to improper handling of unsanitized image data or URLs in the addImage method, which allows an attacker to supply a malicious PNG file that triggers high CPU utilization and denial of service...

8.7CVSS6.6AI score0.00658EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.6 views

macOS 13.x < 13.7.8 (124929)

The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.7.8. It is, therefore, affected by a vulnerability: - Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticat...

10CVSS6AI score0.19972EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

macOS 14.x < 14.7.8 (124928)

The remote host is running a version of macOS / Mac OS X that is 14.x prior to 14.7.8. It is, therefore, affected by a vulnerability: - Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticat...

10CVSS6AI score0.19972EPSS
Exploits9References2
CNNVD
CNNVD
added 2025/04/15 12:0 a.m.2 views

Autodesk AutoCAD和Autodesk Revit 缓冲区错误漏洞

Autodesk AutoCAD and Autodesk Revit are both products of Autodesk, Inc. of the U.S.A. Autodesk AutoCAD is a suite of professional 3D drawing software.Autodesk Revit is a suite of building information modeling software. A security vulnerability exists in Autodesk AutoCAD and Autodesk Revit that...

7.8CVSS6.8AI score0.0031EPSS
Exploits0References5
Veracode
Veracode
added 2025/02/27 6:7 a.m.12 views

Heap Buffer Overflow

libexiv2.so is vulnerable to a Heap Buffer Overflow. The vulnerability is due to a heap buffer overflow triggered when writing metadata into a crafted image file, allows an attacker could exploit this to achieve code execution if a victim processes a malicious image with Exiv2...

9.8CVSS7.5AI score0.00816EPSS
Exploits1References4Affected Software2
OSV
OSV
added 2024/03/01 7:15 p.m.3 views

CVE-2024-1453

In Sante DICOM Viewer Pro versions 14.0.3 and prior, a user must open a malicious DICOM file, which could allow a local attacker to disclose information or execute arbitrary code...

7.8CVSS5.9AI score0.00251EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.6 views

The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malicious JPG file...

10CVSS8AI score0.0077EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/09/27 4:15 p.m.5 views

CVE-2021-39824

Adobe Premiere Elements version 2021.2235820 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious png file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this...

7.8CVSS7.6AI score0.01697EPSS
Exploits0References1
Veracode
Veracode
added 2021/08/18 5:55 p.m.10 views

Denial Of Service (DoS)

Exiv2 is vulnerable to denial of service. An out-of-bounds read occurs when writing a the metadata of a malicious image file...

5.5CVSS6.4AI score0.00984EPSS
Exploits0References8Affected Software3
Veracode
Veracode
added 2021/08/18 5:55 p.m.9 views

Denial Of Service (DoS)

Exiv2 is vulnerable to denial of service. A NULL pointer dereference occurs when an attacker submits a malicious image file to print its metadata content...

5.5CVSS6.4AI score0.00989EPSS
Exploits0References8Affected Software2
Veracode
Veracode
added 2020/12/06 3:33 a.m.28 views

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service. A memory leak in the function SVGKeyValuePairs in coders/svg.c allows an attacker to cause a denial of service via a malicious image file...

5.5CVSS4.9AI score0.01736EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2020/04/10 12:40 a.m.22 views

Privilege Escalation

ibm java is vulnerable to privilege escalation. A remote attacker is able to obtain higher privileges using a malicious image file...

9.3CVSS3.4AI score0.04262EPSS
Exploits1References27Affected Software1
Veracode
Veracode
added 2020/03/27 1:17 p.m.36 views

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS. A flaw in MagickWand/mogrify.c causes memory leaks, allowing an attacker to input a malicious image file to trigger an application crash...

6.5CVSS3.6AI score0.02183EPSS
Exploits1References7Affected Software5
Veracode
Veracode
added 2020/03/27 1:3 p.m.41 views

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS. The attack exists because the function WriteTIFFImage of coders/tiff.c causes memory leaks in AcquireMagickMemory , allowing an attacker to input a malicious image file to trigger a heap-based buffer over-read...

8.1CVSS4.4AI score0.03708EPSS
Exploits1References9Affected Software5
Rows per page
Query Builder