Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imageio vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-3608
ImageIO in Apple Mac OS X 10.4.11 and 10.5 up to and including 10.5.4 allows context-dependent malicious users to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a crafted JPEG image with an embedded ICC profile.
Apple Mac Os X 10.5
Apple Mac Os X 10.5.1
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.3
Apple Mac Os X 10.5.4
Apple Mac Os X Server 10.5
Apple Mac Os X Server 10.5.1
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.3
4.3
CVSSv2
CVE-2010-0042
ImageIO in Apple Safari prior to 4.0.5 and iTunes prior to 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote malicious users to obtain potentially sensitive information from process memory via a crafted TIFF image.
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari
Apple Safari 4.0.3
Apple Safari 4.0.2
4.3
CVSSv2
CVE-2010-0041
ImageIO in Apple Safari prior to 4.0.5 and iTunes prior to 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote malicious users to obtain potentially sensitive information from process memory via a crafted BMP image.
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari
Apple Safari 4.0.3
NA
CVE-2023-32372
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. Processing an image may result in disclosure of process memory.
Apple Macos
Apple Watchos
Apple Tvos
Apple Iphone Os
Apple Ipados
NA
CVE-2023-23519
A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Processing an image may lead to a denial-of-service.
Apple Watchos
Apple Tvos
Apple Ipados
Apple Iphone Os
Apple Macos
NA
CVE-2024-23257
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.4, macOS Ventura 13.6.5, macOS Sonoma 14.4, visionOS 1.1, iOS 16.7.6 and iPadOS 16.7.6. Processing an image may result in disclosure of process memory.
6.8
CVSSv2
CVE-2010-0505
Heap-based buffer overflow in ImageIO in Apple Mac OS X prior to 10.6.3 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 (JPEG2000) image, related to incorrect calculation and the CGImageReadGetBytesAtOffse...
Apple Mac Os X Server
Apple Mac Os X 10.5.8
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.1
Apple Mac Os X 10.6.1
Apple Mac Os X
Apple Mac Os X 10.5.5
Apple Mac Os X 10.5.4
Apple Mac Os X 10.6.0
Apple Mac Os X 10.5.7
Apple Mac Os X 10.5.6
Apple Mac Os X 10.5
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
Apple Mac Os X 10.5.3
Apple Mac Os X 10.5.2
Apple Mac Os X Server 10.5.4
9.3
CVSSv2
CVE-2011-0170
Heap-based buffer overflow in ImageIO in CoreGraphics in Apple iTunes prior to 10.2 on Windows allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted International Color Consortium (ICC) profile in a JPEG image.
Apple Itunes 4.1.0
Apple Itunes 4.2.0
Apple Itunes 4.7.1
Apple Itunes 4.7.2
Apple Itunes 6.0.1
Apple Itunes 6.0.2
Apple Itunes 7.1.0
Apple Itunes 7.1.1
Apple Itunes 7.4.1
Apple Itunes 7.4.2
Apple Itunes 7.6.2
Apple Itunes 7.7
Apple Itunes 8.2
Apple Itunes 8.2.1
Apple Itunes 10.0
Apple Itunes 10.0.1
Apple Itunes 4.0.0
Apple Itunes 4.0.1
Apple Itunes 4.7
Apple Itunes 4.7.0
Apple Itunes 5.0.1
Apple Itunes 6.0.0
5
CVSSv2
CVE-2006-1984
Unspecified vulnerability in the _cg_TIFFSetField function in Mac OS X 10.4.6 and previous versions, as used in applications that use ImageIO or AppKit, allows remote malicious users to cause a denial of service (application crash) via a crafted TIFF image that triggers a null de...
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.4
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.2
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.6
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.4.4
Apple Mac Os X 10.3
Apple Mac Os X 10.3.7
Apple Mac Os X 10.3.8
Apple Mac Os X Server 10.3
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.6
Apple Mac Os X 10.4.3
Apple Mac Os X 10.4.4
Apple Mac Os X Server 10.3.7
Apple Mac Os X Server 10.3.8
6.8
CVSSv2
CVE-2017-13814
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "ImageIO" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted ima...
Apple Mac Os X
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »