Filtered by vendor Freeimage Project
Subscribe
Total
53 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-70968 | 1 Freeimage Project | 1 Freeimage | 2026-01-23 | N/A | 9.8 CRITICAL |
|
FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE().
|
|||||
| CVE-2025-65803 | 1 Freeimage Project | 1 Freeimage | 2025-12-17 | N/A | 6.5 MEDIUM |
|
An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.
|
|||||
| CVE-2023-47997 | 1 Freeimage Project | 1 Freeimage | 2025-11-04 | N/A | 6.5 MEDIUM |
|
An issue discovered in BitmapAccess.cpp::FreeImage_AllocateBitmap in FreeImage 3.18.0 leads to an infinite loop and allows attackers to cause a denial of service.
|
|||||
| CVE-2023-47995 | 1 Freeimage Project | 1 Freeimage | 2025-11-04 | N/A | 6.5 MEDIUM |
|
Memory Allocation with Excessive Size Value discovered in BitmapAccess.cpp::FreeImage_AllocateBitmap in FreeImage 3.18.0 allows attackers to cause a denial of service.
|
|||||
| CVE-2024-9029 | 1 Freeimage Project | 1 Freeimage | 2025-08-08 | N/A | 7.5 HIGH |
|
A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service.
|
|||||
| CVE-2023-47993 | 1 Freeimage Project | 1 Freeimage | 2025-06-20 | N/A | 6.5 MEDIUM |
|
A Buffer out-of-bound read vulnerability in Exif.cpp::ReadInt32 in FreeImage 3.18.0 allows attackers to cause a denial-of-service.
|
|||||
| CVE-2023-47992 | 1 Freeimage Project | 1 Freeimage | 2025-06-17 | N/A | 8.8 HIGH |
|
An integer overflow vulnerability in FreeImageIO.cpp::_MemoryReadProc in FreeImage 3.18.0 allows attackers to obtain sensitive information, cause a denial-of-service attacks and/or run arbitrary code.
|
|||||
| CVE-2023-47994 | 1 Freeimage Project | 1 Freeimage | 2025-06-03 | N/A | 8.8 HIGH |
|
An integer overflow vulnerability in LoadPixelDataRLE4 function in PluginBMP.cpp in Freeimage 3.18.0 allows attackers to obtain sensitive information, cause a denial of service and/or run arbitrary code.
|
|||||
| CVE-2023-47996 | 1 Freeimage Project | 1 Freeimage | 2025-05-14 | N/A | 6.5 MEDIUM |
|
An integer overflow vulnerability in Exif.cpp::jpeg_read_exif_dir in FreeImage 3.18.0 allows attackers to obtain information and cause a denial of service.
|
|||||
| CVE-2020-22524 | 1 Freeimage Project | 1 Freeimage | 2025-05-05 | N/A | 6.5 MEDIUM |
|
Buffer Overflow vulnerability in FreeImage_Load function in FreeImage Library 3.19.0(r1828) allows attackers to cuase a denial of service via crafted PFM file.
|
|||||
| CVE-2020-21427 | 1 Freeimage Project | 1 Freeimage | 2025-05-05 | N/A | 7.8 HIGH |
|
Buffer Overflow vulnerability in function LoadPixelDataRLE8 in PluginBMP.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
|
|||||
| CVE-2020-21428 | 1 Freeimage Project | 1 Freeimage | 2025-05-02 | N/A | 7.8 HIGH |
|
Buffer Overflow vulnerability in function LoadRGB in PluginDDS.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
|
|||||
| CVE-2016-5684 | 1 Freeimage Project | 1 Freeimage | 2025-04-20 | 6.8 MEDIUM | 7.8 HIGH |
|
An exploitable out-of-bounds write vulnerability exists in the XMP image handling functionality of the FreeImage library. A specially crafted XMP file can cause an arbitrary memory overwrite resulting in code execution. An attacker can provide a malicious image to trigger this vulnerability.
|
|||||
| CVE-2015-0852 | 1 Freeimage Project | 1 Freeimage | 2025-04-12 | 5.0 MEDIUM | N/A |
|
Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service (heap memory corruption) via vectors related to the height and width of a window.
|
|||||
| CVE-2024-28563 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 5.9 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::DwaCompressor::Classifier::Classifier() function when reading images in EXR format.
|
|||||
| CVE-2024-28564 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::CharPtrIO::readChars() function when reading images in EXR format.
|
|||||
| CVE-2024-28565 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 5.5 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the psdParser::ReadImageData() function when reading images in PSD format.
|
|||||
| CVE-2024-28566 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 8.4 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the AssignPixel() function when reading images in TIFF format.
|
|||||
| CVE-2024-28567 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_CreateICCProfile() function when reading images in TIFF format.
|
|||||
| CVE-2024-28568 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the read_iptc_profile() function when reading images in TIFF format.
|
|||||
| CVE-2024-28569 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 7.8 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::Xdr::read() function when reading images in EXR format.
|
|||||
| CVE-2024-28570 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 5.5 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the processMakerNote() function when reading images in JPEG format.
|
|||||
| CVE-2024-28571 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 5.5 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the fill_input_buffer() function when reading images in JPEG format.
|
|||||
| CVE-2024-28572 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_SetTagValue() function when reading images in JPEG format.
|
|||||
| CVE-2024-28573 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile() function when reading images in JPEG format.
|
|||||
| CVE-2024-28574 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K format.
|
|||||
| CVE-2024-28575 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_read_mct() function when reading images in J2K format.
|
|||||
| CVE-2024-28576 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 5.5 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_tcp_destroy() function when reading images in J2K format.
|
|||||
| CVE-2024-28577 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 5.5 MEDIUM |
|
Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile_raw() function when reading images in JPEG format.
|
|||||
| CVE-2024-28578 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 8.4 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Load() function when reading images in RAS format.
|
|||||
| CVE-2024-28579 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.2 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_Unload() function when reading images in HDR format.
|
|||||
| CVE-2024-28580 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 8.4 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the ReadData() function when reading images in RAS format.
|
|||||
| CVE-2024-28581 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 8.4 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the _assignPixel<>() function when reading images in TARGA format.
|
|||||
| CVE-2024-28582 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 8.4 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the rgbe_RGBEToFloat() function when reading images in HDR format.
|
|||||
| CVE-2024-28583 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 7.8 HIGH |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.
|
|||||
| CVE-2024-28584 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 3.3 LOW |
|
Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the J2KImageToFIBITMAP() function when reading images in J2K format.
|
|||||
| CVE-2024-28562 | 1 Freeimage Project | 1 Freeimage | 2025-03-28 | N/A | 6.8 MEDIUM |
|
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::copyIntoFrameBuffer() component when reading images in EXR format.
|
|||||
| CVE-2021-40266 | 1 Freeimage Project | 1 Freeimage | 2024-11-21 | N/A | 6.5 MEDIUM |
|
FreeImage before 1.18.0, ReadPalette function in PluginTIFF.cpp is vulnerabile to null pointer dereference.
|
|||||
| CVE-2021-40265 | 1 Freeimage Project | 1 Freeimage | 2024-11-21 | N/A | 8.8 HIGH |
|
A heap overflow bug exists FreeImage before 1.18.0 via ofLoad function in PluginJPEG.cpp.
|
|||||
| CVE-2021-40264 | 1 Freeimage Project | 1 Freeimage | 2024-11-21 | N/A | 6.5 MEDIUM |
|
NULL pointer dereference vulnerability in FreeImage before 1.18.0 via the FreeImage_CloneTag function inFreeImageTag.cpp.
|
|||||