Filtered by vendor Xnview
Subscribe
Total
170 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2012-0684 | 1 Xnview | 1 Xnview | 2025-04-11 | 9.3 HIGH | N/A |
| Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0685. | |||||
| CVE-2010-1932 | 1 Xnview | 1 Xnview | 2025-04-11 | 9.3 HIGH | N/A |
| Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote attackers to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Encoding field. | |||||
| CVE-2012-0277 | 1 Xnview | 1 Xnview | 2025-04-11 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image. | |||||
| CVE-2012-0685 | 1 Xnview | 1 Xnview | 2025-04-11 | 9.3 HIGH | N/A |
| Integer overflow in XnViewer (aka XnView) before 1.98.5 allows remote attackers to execute arbitrary code via a crafted file containing PSD record types, a different vulnerability than CVE-2012-0684. | |||||
| CVE-2012-1051 | 1 Xnview | 1 Xnview | 2025-04-11 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in Xjp2.dll in the JPEG2000 plug-in in XnView 1.98.5 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. | |||||
| CVE-2013-2577 | 1 Xnview | 1 Xnview | 2025-04-11 | 9.3 HIGH | N/A |
| Buffer overflow in XnView before 2.04 allows remote attackers to execute arbitrary code via a crafted PCT file. | |||||
| CVE-2008-1461 | 1 Xnview | 1 Xnview | 2025-04-09 | 7.6 HIGH | N/A |
| Buffer overflow in XnView 1.92.1 allows user-assisted remote attackers to execute arbitrary code via a long filename argument on the command line. NOTE: it is unclear whether there are common handler configurations in which this argument is controlled by an attacker. | |||||
| CVE-2023-52174 | 1 Xnview | 1 Xnview Classic | 2024-11-21 | N/A | 9.8 CRITICAL |
| XnView Classic before 2.51.3 on Windows has a Write Access Violation at xnview.exe+0x3125D6. | |||||
| CVE-2023-52173 | 1 Xnview | 1 Xnview Classic | 2024-11-21 | N/A | 9.8 CRITICAL |
| XnView Classic before 2.51.3 on Windows has a Write Access Violation at xnview.exe+0x3ADBD0. | |||||
| CVE-2023-46587 | 1 Xnview | 1 Xnview | 2024-11-21 | N/A | 7.8 HIGH |
| Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file. | |||||
| CVE-2023-43252 | 1 Xnview | 1 Nconvert | 2024-11-21 | N/A | 7.8 HIGH |
| XNSoft Nconvert 7.136 is vulnerable to Buffer Overflow via a crafted image file. | |||||
| CVE-2023-43251 | 1 Xnview | 1 Nconvert | 2024-11-21 | N/A | 7.8 HIGH |
| XNSoft Nconvert 7.136 has an Exception Handler Chain Corrupted via a crafted image file. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution. | |||||
| CVE-2023-43250 | 1 Xnview | 1 Nconvert | 2024-11-21 | N/A | 7.8 HIGH |
| XNSoft Nconvert 7.136 is vulnerable to Buffer Overflow. There is a User Mode Write AV via a crafted image file. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution. | |||||
| CVE-2021-28835 | 1 Xnview | 1 Xnview | 2024-11-21 | N/A | 7.8 HIGH |
| Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file. | |||||
| CVE-2021-28427 | 1 Xnview | 1 Xnview | 2024-11-21 | N/A | 7.8 HIGH |
| Buffer Overflow vulnerability in XNView version 2.49.3, allows local attackers to execute arbitrary code via crafted TIFF file. | |||||
| CVE-2020-23887 | 1 Xnview | 1 Xnview Mp | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
| XnView MP v0.96.4 was discovered to contain a heap overflow which allows attackers to cause a denial of service (DoS) via a crafted ico file. Related to a Read Access Violation starting at USER32!SmartStretchDIBits+0x33. | |||||
| CVE-2020-23886 | 1 Xnview | 1 Xnview Mp | 2024-11-21 | 4.3 MEDIUM | 5.5 MEDIUM |
| XnView MP v0.96.4 was discovered to contain a heap overflow which allows attackers to cause a denial of service (DoS) via a crafted pict file. Related to a User Mode Write AV starting at ntdll!RtlpLowFragHeapFree. | |||||
| CVE-2019-9969 | 2 Microsoft, Xnview | 2 Windows, Xnview Classic | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
| XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to xnview+0x385399. | |||||
| CVE-2019-9968 | 2 Microsoft, Xnview | 2 Windows, Xnview Classic | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
| XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to ntdll!RtlQueueWorkItem. | |||||
| CVE-2019-9967 | 2 Microsoft, Xnview | 2 Windows, Xnview Classic | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
| XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to ntdll!RtlPrefixUnicodeString. | |||||