9 matches found
CVE-2022-40660
CVE-2022-40660 affects Nikon NIS-Elements Viewer 1.2100.1483.0. The vulnerability arises in the PSD image parsing code, where lack of validation of the length of user-supplied data enables a heap-based buffer overflow. An attacker who can entice a user to visit a malicious page or open a maliciou...
CVE-2022-40655
CVE-2022-40655 affects Nikon NIS-Elements Viewer (version 1.2100.1483.0). The flaw is in ND2 file parsing, caused by insufficient validation of the length of user-supplied data before copying to a heap-based buffer, enabling remote code execution with the attacker’s code running in the user’s pro...
CVE-2022-40661
Vulnerability summary (CVE-2022-40661) : Nikon NIS-Elements Viewer 1.2100.1483.0 contains a BMP image parsing flaw that fails to validate the length of user-supplied data before copying to a heap-based buffer, enabling heap-based buffer overflow. This can allow remote code execution in the contex...
CVE-2022-40657
CVE-2022-40657 affects Nikon NIS-Elements Viewer 1.2100.1483.0. The flaw is in PSD file parsing, where crafted PSD data can trigger a write past the end of an allocated buffer, enabling remote code execution in the context of the current process. Exploitation requires user interaction (visiting a...
CVE-2022-40658
CVE-2022-40658 affects Nikon NIS-Elements Viewer 1.2100.1483.0. The flaw is in the parsing of TIF images, where crafted data can trigger a write past the end of an allocated buffer, allowing an attacker to execute code in the context of the current process. User interaction is required (target mu...
CVE-2022-40663
CVE-2022-40663 affects Nikon NIS-Elements Viewer 1.2100.1483.0. The vulnerability is an out-of-bounds read in the TIF image parser that can lead to remote code execution when a user opens a crafted TIF image or visits a malicious page. The flaw is triggered by data causing a read past the end of ...
CVE-2022-40656
CVE-2022-40656 affects Nikon NIS-Elements Viewer 13.2.0.21165. The root cause is an out-of-bounds read in the ND2 file parsing, which can be triggered by crafted ND2 data and may allow code execution in the attacker’s context after user interaction (visiting a malicious page or opening a maliciou...
CVE-2022-40659
CVE-2022-40659 affects Nikon NIS-Elements Viewer 1.2100.1483.0. The flaw is in the parsing of TIF images, where crafted data can trigger a write past the end of an allocated buffer, enabling remote code execution in the context of the current process. User interaction is required (target must vis...
CVE-2022-40662
CVE-2022-40662 affects Nikon NIS-Elements Viewer 1.2100.1483.0. The vulnerability is a TIF image parsing out-of-bounds read that can allow remote code execution in the context of the current process. Exploitation requires user interaction (the target must visit a malicious page or open a maliciou...