CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial of service or possibly have unspecified other impact via invalid JPEG2000 data in a PDF document...

6.8CVSS9.8AI score0.02695EPSS

Exploits0References4

AlpineLinux•added 2020/01/28 5:22 p.m.•39 views

CVE-2020-8112

opjt1clbldecodeprocessor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851...

8.8CVSS8.6AI score0.04509EPSS

Exploits1

OSV•added 2020/01/13 6:15 a.m.•1 views

DEBIAN-CVE-2020-6851

OpenJPEG through 2.3.1 has a heap-based buffer overflow in opjt1clbldecodeprocessor in openjp2/t1.c because of lack of opjj2kupdateimagedimensions validation...

7.5CVSS7.5AI score0.04773EPSS

Exploits1References1

Cvelist•added 2019/09/05 12:52 p.m.•20 views

CVE-2018-21010

OpenJPEG before 2.3.1 has a heap buffer overflow in colorapplyiccprofile in bin/common/color.c...

8.8AI score0.00841EPSS

Exploits0References4

Mageia•added 2019/01/05 6:30 p.m.•44 views

Updated openjpeg2 packages fix security vulnerabilities

A stack-based buffer overflow in the pgxtoimage function in jpwl/convert.c could crash the converter CVE-2017-17479. A stack-based buffer overflow in the pgxtovolume function in jp3d/convert.c could crash the converter CVE-2017-17480. A flaw was found in OpenJPEG 2.3.0, there is an integer overfl...

9.8CVSS5.3AI score0.05391EPSS

Exploits3References4

UbuntuCve•added 2018/04/10 3:29 p.m.•26 views

CVE-2014-0158

Heap-based buffer overflow in the JPEG2000 image tile decoder in OpenJPEG before 1.5.2 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file because of incorrect j2kdecode, j2kreadeoc, and tcddecodetile interaction, a...

8.8CVSS7.5AI score0.00481EPSS

Exploits0References1

UbuntuCve•added 2017/12/08 7:29 p.m.•37 views

CVE-2017-17479

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtoimage function in jpwl/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

9.8CVSS7.6AI score0.05391EPSS

Exploits0References3

UbuntuCve•added 2017/08/30 10:29 p.m.•24 views

CVE-2017-14041

A stack-based buffer overflow was discovered in the pgxtoimage function in bin/jp2/convert.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

8.8CVSS7.2AI score0.00723EPSS

Exploits0References4

UbuntuCve•added 2016/10/28 2:59 p.m.•24 views

CVE-2016-8332

A buffer overflow in OpenJPEG 2.1.1 causes arbitrary code execution when parsing a crafted image. An exploitable code execution vulnerability exists in the jpeg2000 image file format parser as implemented in the OpenJpeg library. A specially crafted jpeg2000 file can cause an out of bound heap...

7.8CVSS7.9AI score0.01168EPSS

Exploits2References3

UbuntuCve•added 2014/04/18 2:55 p.m.•22 views

CVE-2013-4290

Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to 1 lib/openjp3d/opjjp3dcompress.c, 2 bin/jp3d/convert.c, or 3 lib/openjp3d/event.c...

10CVSS7.4AI score0.0143EPSS

Exploits1References1

UbuntuCve•added 2012/09/05 11:55 p.m.•15 views

CVE-2012-3535

Heap-based buffer overflow in OpenJPEG 1.5.0 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted JPEG2000 file...

6.8CVSS7.5AI score0.04645EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by