Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jasper project jasper vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-10248
The jpc_tsfb_synthesize function in jpc_tsfb.c in JasPer prior to 1.900.9 allows remote malicious users to cause a denial of service (NULL pointer dereference) via vectors involving an empty sequence.
Jasper Project Jasper
7.5
CVSSv3
CVE-2016-10250
The jp2_colr_destroy function in jp2_cod.c in JasPer prior to 1.900.13 allows remote malicious users to cause a denial of service (NULL pointer dereference) by leveraging incorrect cleanup of JP2 box data on error. NOTE: this vulnerability exists because of an incomplete fix for ...
Jasper Project Jasper
5.5
CVSSv3
CVE-2017-5500
libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5501
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5502
libjasper/jp2/jp2_dec.c in JasPer 1.900.17 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5503
The dec_clnpass function in libjasper/jpc/jpc_t1dec.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory write and crash) or possibly have unspecified other impact via a crafted image.
Jasper Project Jasper 1.900.27
5.5
CVSSv3
CVE-2017-5504
The jpc_undo_roi function in libjasper/jpc/jpc_dec.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory read and crash) via a crafted image.
Jasper Project Jasper 1.900.17
5.5
CVSSv3
CVE-2017-5505
The jas_matrix_asl function in jas_seq.c in JasPer 1.900.27 allows remote malicious users to cause a denial of service (invalid memory read and crash) via a crafted image.
Jasper Project Jasper 1.900.27
5.5
CVSSv3
CVE-2018-9055
JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.
Jasper Project Jasper 2.0.14
7.5
CVSSv3
CVE-2017-13745
There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in JasPer 2.0.12 that will lead to a remote denial of service attack by triggering an unexpected jpc_ppmstabtostreams return value, a different vulnerability than CVE-2018-9154.
Jasper Project Jasper 2.0.12
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »