Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Veracode
Veracodeadded 2024/07/23 7:34 a.m.10 views

Out-of-bounds Write

SixLabors.ImageSharp is vulnerable to an Out-of-bounds Write. The vulnerability is due to minCodeSize in the DecodePixels method within the ImageSharp gif decoder, which allows an attacker to crash the application using a specially crafted gif...

7.5CVSS6.5AI score0.00523EPSS
Exploits0References5Affected Software1
Veracode
Veracodeadded 2024/04/16 9:51 a.m.21 views

Denial Of Service (DoS)

SixLabors.ImageSharp is vulnerable to Denial of Service DoS. The vulnerability is caused by processing specially crafted files, which results in excessive memory usage during image decoding...

6.5CVSS6.7AI score0.00202EPSS
Exploits0References6Affected Software1
OSV
OSVadded 2024/04/15 8:24 p.m.20 views

GHSA-5X7M-6737-26CR SixLabors.ImageSharp vulnerable to data leakage

Impact A data leakage flaw was found in ImageSharp's JPEG and TGA decoders. This vulnerability is triggered when an attacker passes a specially crafted JPEG or TGA image file to a software using ImageSharp, potentially disclosing sensitive information from other parts of the software in the...

5.3CVSS5.5AI score0.0041EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2024/04/15 8:24 p.m.25 views

SixLabors.ImageSharp vulnerable to data leakage

Impact A data leakage flaw was found in ImageSharp's JPEG and TGA decoders. This vulnerability is triggered when an attacker passes a specially crafted JPEG or TGA image file to a software using ImageSharp, potentially disclosing sensitive information from other parts of the software in the...

6.5CVSS6.7AI score0.0041EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2024/04/15 8:8 p.m.11 views

CVE-2024-32036 SixLabors.ImageSharp vulnerable to data leakage

ImageSharp is a 2D graphics API. A data leakage flaw was found in ImageSharp's JPEG and TGA decoders. This vulnerability is triggered when an attacker passes a specially crafted JPEG or TGA image file to a software using ImageSharp, potentially disclosing sensitive information from other parts of...

5.3CVSS5.1AI score0.0041EPSS
Exploits0References3
Veracode
Veracodeadded 2024/03/06 5:40 a.m.38 views

Heap-use-after-free

sixlabors.imagesharp is vulnerable to a Heap-use-after-free. The vulnerability is due to improper handling of specially crafted PNG image files during conversion in its PngDecoderCore.cs file's InitializeImage function, potentially leading to information disclosure...

7.1CVSS6.5AI score0.00057EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2024/03/05 4:30 p.m.15 views

CVE-2024-27929 Use After Free in SixLabors.ImageSharp

ImageSharp is a managed, cross-platform, 2D graphics library. A heap-use-after-free flaw was found in ImageSharp's InitializeImage function of PngDecoderCore.cs file. This vulnerability is triggered when an attacker passes a specially crafted PNG image file to ImageSharp for conversion, potential...

7.1CVSS6.8AI score0.00057EPSS
Exploits1References1
OSV
OSVadded 2024/03/05 4:26 p.m.13 views

GHSA-65X7-C272-7G7R Use After Free in SixLabors.ImageSharp

Impact A heap-use-after-free flaw was found in ImageSharp's InitializeImage function of PngDecoderCore.cs file. This vulnerability is triggered when an attacker passes a specially crafted PNG image file to ImageSharp for conversion, potentially leading to information disclosure. Patches The probl...

7.1CVSS6.6AI score0.00057EPSS
Exploits1References4
Rows per page
Query Builder