CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

SUSE CVE•added 2023/02/15 5:12 a.m.•4 views

SUSE CVE-2015-8363

The jpeg2000readmainheaders function in libavcodec/jpeg2000dec.c in FFmpeg before 2.6.5, 2.7.x before 2.7.3, and 2.8.x through 2.8.2 does not enforce uniqueness of the SIZ marker in a JPEG 2000 image, which allows remote attackers to cause a denial of service out-of-bounds heap-memory access or...

6.8CVSS7.5AI score0.02069EPSS

Exploits0References3

OSV•added 2017/12/20 2:29 p.m.•1 views

CVE-2017-16589

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.5CVSS5AI score0.02802EPSS

Exploits0References2

CVE•added 2017/12/20 2:0 p.m.•62 views

CVE-2017-14821

CVE-2017-14821 affects Foxit Reader 8.3.1.21155, with the root cause in parsing the xTsiz member of SIZ markers, leading to potential information disclosure and, in conjunction with other vulnerabilities, code execution. The exploit requires user interaction (visiting a malicious page or opening ...

6.5CVSS7.2AI score0.02456EPSS

Exploits0References2Affected Software1

Zero Day Initiative•added 2017/11/29 12:0 a.m.•31 views

Foxit Reader JPEG2000 SIZ marker yTsiz Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

4.3CVSS6.7AI score0.02802EPSS

Exploits0References1

Zero Day Initiative•added 2017/11/14 12:0 a.m.•29 views

Foxit Reader JPEG2000 SIZ marker xOsiz Out-Of-Bounds Read Information Disclosure Vulnerability

4.3CVSS6.3AI score0.02456EPSS

Exploits0References1

Zero Day Initiative•added 2017/11/14 12:0 a.m.•31 views

Foxit Reader JPEG2000 SIZ marker xTsiz Out-Of-Bounds Read Information Disclosure Vulnerability

4.3CVSS6.3AI score0.02456EPSS

Exploits0References1

RedHat Linux•added 2017/05/09 5:13 p.m.•4 views

jasper: missing SIZ marker segment XRsiz and YRsiz fields range check

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted XRsiz value in a BMP image to the imginfo command...

5.5CVSS7.2AI score0.02167EPSS

Exploits1References4

UbuntuCve•added 2015/11/26 5:59 p.m.•29 views

CVE-2015-8363

6.8CVSS7.2AI score0.02069EPSS

Exploits0References1

OSV•added 2015/11/26 5:59 p.m.•1 views

UBUNTU-CVE-2015-8363

6.8CVSS7.4AI score0.02069EPSS

Exploits0References2

OSV•added 2015/11/26 5:59 p.m.•6 views

CVE-2015-8363

9.2AI score

Exploits0References3

OSV•added 2015/11/26 5:59 p.m.•2 views

DEBIAN-CVE-2015-8363

6.8CVSS8.9AI score0.02069EPSS

Exploits0References1

Debian CVE•added 2015/11/26 5:0 p.m.•28 views

CVE-2015-8363

6.8CVSS9.4AI score0.02069EPSS

Exploits0

Zero Day Initiative•added 2010/11/10 12:0 a.m.•38 views

Apple QuickTime JP2 SIZ Chunk Uninitialized Object Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the application'...

9CVSS9.2AI score0.02987EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by