Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flif flif 0.3 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-14232
The read_chunk function in flif-dec.cpp in Free Lossless Image Format (FLIF) 0.3 allows remote malicious users to cause a denial of service (invalid memory read and application crash) via a crafted flif file.
Jasper Project Jasper
Flif Flif 0.3
6.8
CVSSv2
CVE-2019-14373
An issue exists in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a heap-based buffer over-read in libpng via a crafted flif file.
Flif Flif 0.3
4.3
CVSSv2
CVE-2018-14876
An issue exists in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a longjmp that leads to an uninitialized stack frame after a libpng error concerning the IHDR image width.
Flif Flif 0.3
6.8
CVSSv2
CVE-2018-12109
An issue exists in Free Lossless Image Format (FLIF) 0.3. The TransformPaletteC<FileIO>::process function in transform/palette_C.hpp allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified ot...
Flif Flif 0.3
4.3
CVSSv2
CVE-2018-11507
An issue exists in Free Lossless Image Format (FLIF) 0.3. An attacker can trigger a long loop in image_load_pnm in image/image-pnm.cpp.
Flif Flif 0.3
4.3
CVSSv2
CVE-2018-10971
An issue exists in Free Lossless Image Format (FLIF) 0.3. The Plane function in image/image.hpp allows remote malicious users to cause a denial of service (attempted excessive memory allocation) via a crafted file.
Flif Flif 0.3
6.8
CVSSv2
CVE-2018-10972
An issue exists in Free Lossless Image Format (FLIF) 0.3. The TransformPaletteC::process function in transform/palette_C.hpp allows remote malicious users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted file.
Flif Free Lossless Image Format 0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started