3 matches found
CVE-2022-24457
Technical details about CVE-2022-24457 are not publicly provided in the connected documents. No affected versions, exploitation details, or fixes are disclosed here. Monitor for updates from official advisories and vendors.
CVE-2020-17101
CVE-2020-17101 is a Windows HEIF Image Extensions remote code execution vulnerability. The NVD entry assigns CVSSv3.1: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (base 7.8) with local attack vector, low complexity, no user interaction, and high impact on confidentiality, integrity, and availability. The...
CVE-2025-62821
CVE-2025-62821 affects Microsoft HEIF Image Extensions 1.2.22.0. The issue is an out-of-bounds read caused by CHEIFItemInfoEntry_GetDataSize returning success while reporting data size as 0, leading to a 1-byte allocation. Later, CopyPixels computes copy_size = stride * abs(roi_height) without va...