Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
uclouvain openjpeg vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2013-4289
Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG prior to 1.5.2 allow remote malicious users to have unspecified impact and vectors, which trigger a heap-based buffer overflow.
Uclouvain Openjpeg
Uclouvain Openjpeg 1.5
Uclouvain Openjpeg 1.4
Uclouvain Openjpeg 1.3
10
CVSSv2
CVE-2013-4290
Stack-based buffer overflow in OpenJPEG prior to 1.5.2 allows remote malicious users to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib/openjp3d/event.c.
Uclouvain Openjpeg 1.3
Uclouvain Openjpeg 1.5
Uclouvain Openjpeg 1.4
Uclouvain Openjpeg
10
CVSSv2
CVE-2012-3358
Multiple heap-based buffer overflows in the j2k_read_sot function in j2k.c in OpenJPEG 1.5 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted (1) tile number or (2) tile length in a JPEG 2000 image file.
Uclouvain Openjpeg 1.5
9.3
CVSSv2
CVE-2012-1499
The JPEG 2000 codec (jp2.c) in OpenJPEG prior to 1.5 allows remote malicious users to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."
Uclouvain Openjpeg
Uclouvain Openjpeg 1.3
8.3
CVSSv2
CVE-2020-27844
A flaw was found in openjpeg's src/lib/openjp2/t2.c in versions before 2.4.0. This flaw allows an malicious user to provide crafted input to openjpeg during conversion and encoding, causing an out-of-bounds write. The highest threat from this vulnerability is to confidential...
Uclouvain Openjpeg
Debian Debian Linux 9.0
Oracle Outside In Technology 8.5.5
7.5
CVSSv2
CVE-2018-7648
An issue exists in mj2/opj_mj2_extract.c in OpenJPEG 2.3.0. The output prefix was not checked for length, which could overflow a buffer, when providing a prefix with 50 or more characters on the command line.
Uclouvain Openjpeg 2.3.0
7.5
CVSSv2
CVE-2017-17479
In OpenJPEG 2.3.0, a stack-based buffer overflow exists in the pgxtoimage function in jpwl/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.
Uclouvain Openjpeg 2.3.0
7.5
CVSSv2
CVE-2017-17480
In OpenJPEG 2.3.0, a stack-based buffer overflow exists in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution.
Uclouvain Openjpeg 2.3.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
7.5
CVSSv2
CVE-2015-8871
Use-after-free vulnerability in the opj_j2k_write_mco function in j2k.c in OpenJPEG prior to 2.1.1 allows remote malicious users to have unspecified impact via unknown vectors.
Debian Debian Linux 8.0
Uclouvain Openjpeg
1 Github repository
7.1
CVSSv2
CVE-2020-27843
A flaw was found in OpenJPEG in versions before 2.4.0. This flaw allows an malicious user to provide specially crafted input to the conversion or encoding functionality, causing an out-of-bounds read. The highest threat from this vulnerability is system availability.
Uclouvain Openjpeg
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Outside In Technology 8.5.5
Debian Debian Linux 9.0
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »