Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xnview xnview vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-28835
Buffer Overflow vulnerability in XNView prior to 2.50, allows local malicious users to execute arbitrary code via crafted GEM bitmap file.
Xnview Xnview
6.8
CVSSv2
CVE-2013-3246
Stack-based buffer overflow in xnview.exe in XnView prior to 2.03 allows remote malicious users to execute arbitrary code via a crafted image layer in an XCF file.
Xnview Xnview
6.8
CVSSv2
CVE-2013-3939
xnview.exe in XnView prior to 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote malicious users to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-bas...
Xnview Xnview
7.5
CVSSv2
CVE-2013-3941
Xjp2.dll in XnView prior to 2.13 allows remote malicious users to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer...
Xnview Xnview
6.8
CVSSv2
CVE-2013-3247
Heap-based buffer overflow in xnview.exe in XnView prior to 2.03 allows remote malicious users to execute arbitrary code via a crafted RLE compressed layer in an XCF file.
Xnview Xnview
9.3
CVSSv2
CVE-2010-1932
Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote malicious users to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Encoding field.
Xnview Xnview 1.97.4
1 EDB exploit
6.8
CVSSv2
CVE-2017-8781
XnView Classic for Windows Version 2.40 allows user-assisted remote malicious users to execute code via a crafted JPEG 2000 file that is mishandled during the opening of a directory in "Browser" mode, because of a "Stack Buffer Overrun" issue.
Xnview Xnview 2.40
4.6
CVSSv2
CVE-2019-17262
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001fc0.
Xnview Xnview 2.49.1
6.8
CVSSv2
CVE-2017-15773
XnView Classic for Windows Version 2.43 allows malicious users to cause a denial of service or possibly have unspecified other impact via a crafted .dwg file, related to a "Read Access Violation starting at CADImage+0x0000000000285d79."
Xnview Xnview 2.43
6.8
CVSSv2
CVE-2017-15774
XnView Classic for Windows Version 2.43 allows malicious users to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls Code Flow starting at CADImage+0x0000000000221a9a."
Xnview Xnview 2.43
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »