Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openjpeg vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4289
Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG prior to 1.5.2 allow remote malicious users to have unspecified impact and vectors, which trigger a heap-based buffer overflow.
Uclouvain Openjpeg 1.3
Uclouvain Openjpeg 1.4
Uclouvain Openjpeg 1.5
Uclouvain Openjpeg
NA
CVE-2013-4290
Stack-based buffer overflow in OpenJPEG prior to 1.5.2 allows remote malicious users to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib/openjp3d/event.c.
Uclouvain Openjpeg 1.3
Uclouvain Openjpeg 1.4
Uclouvain Openjpeg 1.5
Uclouvain Openjpeg
NA
CVE-2012-3535
Heap-based buffer overflow in OpenJPEG 1.5.0 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted JPEG2000 file.
Uclouvain Openjpeg 1.3
Uclouvain Openjpeg 1.4
Uclouvain Openjpeg
NA
CVE-2009-5030
The tcd_free_encode function in tcd.c in OpenJPEG 1.3 up to and including 1.5 allows remote malicious users to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted tile information in a Gray16 TIFF image, which causes insufficient memory t...
Uclouvain Openjpeg 1.3
Uclouvain Openjpeg 1.4
Uclouvain Openjpeg 1.5
NA
CVE-2012-1499
The JPEG 2000 codec (jp2.c) in OpenJPEG prior to 1.5 allows remote malicious users to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."
Uclouvain Openjpeg 1.3
Uclouvain Openjpeg
6.5
CVSSv3
CVE-2016-10506
Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, opj_pi_next_pcrl, and opj_pi_next_rpcl in pi.c in OpenJPEG prior to 2.2.0 allow remote malicious users to cause a denial of service (application crash) via crafted j2k files.
Uclouvain Openjpeg
5.5
CVSSv3
CVE-2017-12982
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote malicious users to cause a denial of service (memory allocation failure) in the opj_image_create function in lib/openjp2/image.c, relate...
Uclouvain Openjpeg
6.5
CVSSv3
CVE-2016-10504
Heap-based buffer overflow vulnerability in the opj_mqc_byteout function in mqc.c in OpenJPEG prior to 2.2.0 allows remote malicious users to cause a denial of service (application crash) via a crafted bmp file.
Uclouvain Openjpeg
1 EDB exploit
6.5
CVSSv3
CVE-2016-10505
NULL pointer dereference vulnerabilities in the imagetopnm function in convert.c, sycc444_to_rgb function in color.c, color_esycc_to_rgb function in color.c, and sycc422_to_rgb function in color.c in OpenJPEG prior to 2.2.0 allow remote malicious users to cause a denial of servic...
Uclouvain Openjpeg
6.5
CVSSv3
CVE-2016-10507
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG prior to 2.2.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted bmp file.
Uclouvain Openjpeg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »