Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jasper project vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-8886
The jas_malloc function in libjasper/base/jas_malloc.c in JasPer prior to 1.900.11 allows remote malicious users to have unspecified impact via a crafted file, which triggers a memory allocation failure.
Jasper Project Jasper
5.5
CVSSv3
CVE-2017-6851
The jas_matrix_bindsub function in jas_seq.c in JasPer 2.0.10 allows remote malicious users to cause a denial of service (invalid read) via a crafted image.
Jasper Project Jasper
5.5
CVSSv3
CVE-2022-40755
JasPer 3.0.6 allows denial of service via a reachable assertion in the function inttobits in libjasper/base/jas_image.c.
Jasper Project Jasper 3.0.6
5.5
CVSSv3
CVE-2018-9055
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.
Jasper Project Jasper 2.0.14
6.5
CVSSv3
CVE-2018-9252
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.
Jasper Project Jasper 2.0.14
5.5
CVSSv3
CVE-2017-9782
JasPer 2.0.12 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jp2_decode function in libjasper/jp2/jp2_dec.c.
Jasper Project Jasper 2.0.12
NA
CVE-2008-3520
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent malicious users to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
Jasper Project Jasper 1.900.1
5.5
CVSSv3
CVE-2017-5498
libjasper/include/jasper/jas_math.h in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5500
libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5501
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Jasper Project Jasper 1.900.17
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »