Lucene search
K

56 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:43 a.m.5 views

CVE-2022-26302

Heap-based buffer overflow exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

7.8CVSS7.8AI score0.00849EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-14759

Malware in sbrugna...

8.8CVSS8.8AI score0.02619EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-34235

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00732EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.6 views

PT-2025-38505

Name of the Vulnerable Software and Affected Versions Supermicro BMC firmware versions affected versions not specified Description An issue exists in the Supermicro BMC firmware validation logic on Supermicro MBD-X12STW. An attacker can update the system firmware with a specially crafted image...

9CVSS9.4AI score0.00301EPSS
Exploits0References25
RedhatCVE
RedhatCVE
added 2025/05/22 10:22 p.m.9 views

CVE-2022-29925

Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

7.8CVSS7.3AI score0.00732EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/12 12:0 a.m.4 views

The vulnerability of the NTFS file system in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the NTFS file system in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by mounting a specially crafted VHD image...

7.8CVSS8.4AI score0.02092EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 2:41 p.m.10 views

CVE-2020-6112

An exploitable code execution vulnerability exists in the JPEG2000 Stripe Decoding functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242 when decoding sub-samples. While initializing tiles with sub-sample data, the application can miscalculate a pointer for the stripes in the tile which...

8.8CVSS7.5AI score0.17093EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/09/28 12:0 a.m.46 views

WebM Project WebP Image Library (libwebp) < 1.3.2 Vulnerability

The version of WebM Project WebP Image Library libwebp installed on the remote host is prior to 1.3.2. It is, therefore, affected by a vulnerability: - Heap buffer overflow in libwebp prior to libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a specially crafted...

8.8CVSS8AI score0.99739EPSS
Exploits9References3
RedhatCVE
RedhatCVE
added 2023/07/27 2:54 p.m.35 views

CVE-2023-35936

An arbitrary file write vulnerability was found in Haskell's Pandoc. This issue can be triggered by providing a specially crafted image element in the input when generating files using the --extract-media option or outputting to PDF format. This may allow an attacker to create or overwrite...

5CVSS5.5AI score0.00349EPSS
Exploits1References4
Redos
Redos
added 2022/11/21 12:0 a.m.47 views

ROS-20221121-03

Vulnerability of ImageMagick graphic editor is related to integer overflow in function ExportIndexQuantum in MagickCore/quantum-export.c. Exploitation of the vulnerability could allow an attacker, acting remotely, to pass specially crafted image data to an application, cause an integer overflow a...

7.8CVSS7.7AI score0.01525EPSS
Exploits1
NVD
NVD
added 2022/06/16 2:15 a.m.27 views

CVE-2022-30549

Out-of-bounds read vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

7.8CVSS0.00868EPSS
Exploits0References3
Prion
Prion
added 2022/06/14 9:15 a.m.17 views

Cross site scripting

Out-of-bounds write vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

6.8CVSS7.7AI score0.00868EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/06/14 7:5 a.m.12 views

CVE-2022-29925

Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

7.8AI score0.00732EPSS
Exploits0References2
NVD
NVD
added 2022/02/24 7:15 p.m.23 views

CVE-2022-0545

An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is...

7.8CVSS0.0112EPSS
Exploits0References3
CNVD
CNVD
added 2021/04/20 12:0 a.m.8 views

Exiv2 Out-of-Bounds Read Vulnerability

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. Exiv2 0.27.3 and earlier versions have an out-of-bounds read vulnerability when writing metadata to specially crafted image files. An attacker could exploit this vulnerability via a specially crafted image...

5.5CVSS6.5AI score0.01568EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2021/04/14 12:0 a.m.38 views

Gitlab -- Vulnerabilities

GitLab Team reports: Remote code execution when uploading specially crafted image files Update Rexml...

7.5CVSS7.1AI score0.05061EPSS
Exploits0References1
OSV
OSV
added 2021/03/25 7:15 p.m.27 views

CVE-2021-3467

A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened...

5.5CVSS6.5AI score
Exploits0References2
Veracode
Veracode
added 2020/04/10 1:3 a.m.27 views

Denial Of Service (DoS)

libpng is vulnerable to denial of service DoS. The vulnerability exists as an out-of-bounds memory read flaw was found in the way libpng processed certain PNG image files. An attacker could create a specially-crafted PNG image that, when opened, could cause an application using libpng to crash...

6.5CVSS2.5AI score0.03484EPSS
Exploits1References26Affected Software1
Veracode
Veracode
added 2020/04/10 12:47 a.m.25 views

Denial Of Service (DoS)

ImageMagick is vulnerable to Denial of Service DoS. It is due to an integer overflow flaw, leading to a heap-based buffer overflow in the ImageMagick routine responsible for creating X11 images. An attacker could create a specially-crafted image file that, when opened by a victim, would cause...

9.3CVSS5.3AI score0.07153EPSS
Exploits0References22Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/01/03 12:0 a.m.50 views

Foxit 3D Plugin Beta 9.7.0.29430 NULL Pointer Dereference Vulnerability

The version of the Foxit 3D plugin installed on the remote Windows host is prior to 9.7.0.29430. It is, therefore affected by a NULL pointer dereference flaw due to improper validation of image data when parsing certain files with incorrect image information. An unauthenticated, remote attacker c...

5.7AI score
Exploits0References1
Rows per page
Query Builder