Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xnview vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-28835
Buffer Overflow vulnerability in XNView prior to 2.50, allows local malicious users to execute arbitrary code via crafted GEM bitmap file.
Xnview Xnview
6.8
CVSSv2
CVE-2012-0276
Multiple heap-based buffer overflows in XnView prior to 1.99 allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed TIFF image or (2) SGI32LogLum compressed TIFF image with the Photometric...
Xnview Xnview
2 EDB exploits
6.8
CVSSv2
CVE-2013-3937
Heap-based buffer overflow in xnview.exe in XnView prior to 2.13 allows remote malicious users to execute arbitrary code via the biBitCount field in a BMP file.
Xnview Xnview
6.8
CVSSv2
CVE-2013-3939
xnview.exe in XnView prior to 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote malicious users to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-bas...
Xnview Xnview
7.5
CVSSv2
CVE-2013-3941
Xjp2.dll in XnView prior to 2.13 allows remote malicious users to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer...
Xnview Xnview
6.8
CVSSv2
CVE-2017-8282
XnView Classic for Windows Version 2.40 allows user-assisted remote malicious users to execute code via a crafted .mov file that is mishandled during the opening of a directory in "Browser" mode, because of a "User Mode Write AV near NULL" in XnView.exe.
Xnview Xnview 2.40
4.6
CVSSv2
CVE-2017-14270
XnView Classic for Windows Version 2.40 allows malicious users to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!RtlFillMemoryUlong+0x0000000000000010."
Xnview Xnview 2.40
4.6
CVSSv2
CVE-2017-14272
XnView Classic for Windows Version 2.40 allows malicious users to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000000000595d."
Xnview Xnview 2.40
4.6
CVSSv2
CVE-2017-14274
XnView Classic for Windows Version 2.40 allows malicious users to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent Write Address starting at jbig2dec+0x0000000000008706."
Xnview Xnview 2.40
4.6
CVSSv2
CVE-2017-14275
XnView Classic for Windows Version 2.40 allows malicious users to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x000000000000001d."
Xnview Xnview 2.40
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »