56 matches found
CVE-2022-26302
Heap-based buffer overflow exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...
EUVD-2019-14759
Malware in sbrugna...
EUVD-2022-34235
Malicious code in bioql PyPI...
PT-2025-38505
Name of the Vulnerable Software and Affected Versions Supermicro BMC firmware versions affected versions not specified Description An issue exists in the Supermicro BMC firmware validation logic on Supermicro MBD-X12STW. An attacker can update the system firmware with a specially crafted image...
CVE-2022-29925
Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...
The vulnerability of the NTFS file system in Windows operating systems allows a perpetrator to execute arbitrary code.
The vulnerability of the NTFS file system in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by mounting a specially crafted VHD image...
CVE-2020-6112
An exploitable code execution vulnerability exists in the JPEG2000 Stripe Decoding functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242 when decoding sub-samples. While initializing tiles with sub-sample data, the application can miscalculate a pointer for the stripes in the tile which...
WebM Project WebP Image Library (libwebp) < 1.3.2 Vulnerability
The version of WebM Project WebP Image Library libwebp installed on the remote host is prior to 1.3.2. It is, therefore, affected by a vulnerability: - Heap buffer overflow in libwebp prior to libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a specially crafted...
CVE-2023-35936
An arbitrary file write vulnerability was found in Haskell's Pandoc. This issue can be triggered by providing a specially crafted image element in the input when generating files using the --extract-media option or outputting to PDF format. This may allow an attacker to create or overwrite...
ROS-20221121-03
Vulnerability of ImageMagick graphic editor is related to integer overflow in function ExportIndexQuantum in MagickCore/quantum-export.c. Exploitation of the vulnerability could allow an attacker, acting remotely, to pass specially crafted image data to an application, cause an integer overflow a...
CVE-2022-30549
Out-of-bounds read vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...
Cross site scripting
Out-of-bounds write vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...
CVE-2022-29925
Access of uninitialized pointer vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...
CVE-2022-0545
An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is...
Exiv2 Out-of-Bounds Read Vulnerability
Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. Exiv2 0.27.3 and earlier versions have an out-of-bounds read vulnerability when writing metadata to specially crafted image files. An attacker could exploit this vulnerability via a specially crafted image...
Gitlab -- Vulnerabilities
GitLab Team reports: Remote code execution when uploading specially crafted image files Update Rexml...
CVE-2021-3467
A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. A specially crafted JP2 image file could cause an application using the Jasper library to crash when opened...
Denial Of Service (DoS)
libpng is vulnerable to denial of service DoS. The vulnerability exists as an out-of-bounds memory read flaw was found in the way libpng processed certain PNG image files. An attacker could create a specially-crafted PNG image that, when opened, could cause an application using libpng to crash...
Denial Of Service (DoS)
ImageMagick is vulnerable to Denial of Service DoS. It is due to an integer overflow flaw, leading to a heap-based buffer overflow in the ImageMagick routine responsible for creating X11 images. An attacker could create a specially-crafted image file that, when opened by a victim, would cause...
Foxit 3D Plugin Beta 9.7.0.29430 NULL Pointer Dereference Vulnerability
The version of the Foxit 3D plugin installed on the remote Windows host is prior to 9.7.0.29430. It is, therefore affected by a NULL pointer dereference flaw due to improper validation of image data when parsing certain files with incorrect image information. An unauthenticated, remote attacker c...