Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openjpeg vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-10504
Heap-based buffer overflow vulnerability in the opj_mqc_byteout function in mqc.c in OpenJPEG prior to 2.2.0 allows remote malicious users to cause a denial of service (application crash) via a crafted bmp file.
Uclouvain Openjpeg
1 EDB exploit
4.3
CVSSv2
CVE-2016-10505
NULL pointer dereference vulnerabilities in the imagetopnm function in convert.c, sycc444_to_rgb function in color.c, color_esycc_to_rgb function in color.c, and sycc422_to_rgb function in color.c in OpenJPEG prior to 2.2.0 allow remote malicious users to cause a denial of servic...
Uclouvain Openjpeg
4.3
CVSSv2
CVE-2016-10506
Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, opj_pi_next_pcrl, and opj_pi_next_rpcl in pi.c in OpenJPEG prior to 2.2.0 allow remote malicious users to cause a denial of service (application crash) via crafted j2k files.
Uclouvain Openjpeg
4.3
CVSSv2
CVE-2016-10507
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG prior to 2.2.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted bmp file.
Uclouvain Openjpeg
4.3
CVSSv2
CVE-2017-12982
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject headers with a zero biBitCount, which allows remote malicious users to cause a denial of service (memory allocation failure) in the opj_image_create function in lib/openjp2/image.c, relate...
Uclouvain Openjpeg
4.3
CVSSv2
CVE-2016-3183
The sycc422_t_rgb function in common/color.c in OpenJPEG prior to 2.1.1 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted jpeg2000 file.
Uclouvain Openjpeg
4.3
CVSSv2
CVE-2016-4797
Divide-by-zero vulnerability in the opj_tcd_init_tile function in tcd.c in OpenJPEG prior to 2.1.1 allows remote malicious users to cause a denial of service (application crash) via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947.
Uclouvain Openjpeg
Fedoraproject Fedora 24
Fedoraproject Fedora 23
4.3
CVSSv2
CVE-2016-4796
Heap-based buffer overflow in the color_cmyk_to_rgb in common/color.c in OpenJPEG prior to 2.1.1 allows remote malicious users to cause a denial of service (crash) via a crafted .j2k file.
Uclouvain Openjpeg
Fedoraproject Fedora 24
Fedoraproject Fedora 23
5
CVSSv2
CVE-2016-9114
There is a NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) of OpenJPEG 2.1.2. image->comps[compno].data is not assigned a value after initialization(NULL). Impact is Denial of Service.
Uclouvain Openjpeg 2.1.2
5
CVSSv2
CVE-2016-9118
Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of convert.c:1719 in OpenJPEG 2.1.2.
Uclouvain Openjpeg 2.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »