Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imageio vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-32372
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. Processing an image may result in disclosure of process memory.
Apple Macos
Apple Watchos
Apple Tvos
Apple Iphone Os
Apple Ipados
NA
CVE-2024-23257
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.4, macOS Ventura 13.6.5, macOS Sonoma 14.4, visionOS 1.1, iOS 16.7.6 and iPadOS 16.7.6. Processing an image may result in disclosure of process memory.
NA
CVE-2008-1573
The BMP and GIF image decoding engine in ImageIO in Apple Mac OS X prior to 10.5.3 allows remote malicious users to obtain sensitive information (memory contents) via a crafted (1) BMP or (2) GIF image, which causes an out-of-bounds read.
Apple Mac Os X Server 10.5.1
Apple Mac Os X
Apple Mac Os X 10.5
Apple Mac Os X 10.5.1
Apple Mac Os X 10.4.11
Apple Mac Os X Server
Apple Mac Os X Server 10.4.11
Apple Mac Os X Server 10.5
NA
CVE-2010-0041
ImageIO in Apple Safari prior to 4.0.5 and iTunes prior to 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote malicious users to obtain potentially sensitive information from process memory via a crafted BMP image.
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari 4.0.2
Apple Safari 4.0.1
Apple Safari
Apple Safari 4.0.3
NA
CVE-2010-0042
ImageIO in Apple Safari prior to 4.0.5 and iTunes prior to 9.1 on Windows does not ensure that memory access is associated with initialized memory, which allows remote malicious users to obtain potentially sensitive information from process memory via a crafted TIFF image.
Apple Safari 4.0.1
Apple Safari 4.0.0b
Apple Safari 4.0
Apple Safari
Apple Safari 4.0.3
Apple Safari 4.0.2
NA
CVE-2008-3608
ImageIO in Apple Mac OS X 10.4.11 and 10.5 up to and including 10.5.4 allows context-dependent malicious users to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a crafted JPEG image with an embedded ICC profile.
Apple Mac Os X 10.5
Apple Mac Os X 10.5.1
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.3
Apple Mac Os X 10.5.4
Apple Mac Os X Server 10.5
Apple Mac Os X Server 10.5.1
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.3
7.8
CVSSv3
CVE-2017-13814
An issue exists in certain Apple products. macOS prior to 10.13.1 is affected. The issue involves the "ImageIO" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted ima...
Apple Mac Os X
NA
CVE-2010-0505
Heap-based buffer overflow in ImageIO in Apple Mac OS X prior to 10.6.3 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 (JPEG2000) image, related to incorrect calculation and the CGImageReadGetBytesAtOffse...
Apple Mac Os X Server
Apple Mac Os X 10.5.8
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.1
Apple Mac Os X 10.6.1
Apple Mac Os X
Apple Mac Os X 10.5.5
Apple Mac Os X 10.5.4
Apple Mac Os X 10.6.0
Apple Mac Os X 10.5.7
Apple Mac Os X 10.5.6
Apple Mac Os X 10.5
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
Apple Mac Os X 10.5.3
Apple Mac Os X 10.5.2
Apple Mac Os X Server 10.5.4
NA
CVE-2006-1984
Unspecified vulnerability in the _cg_TIFFSetField function in Mac OS X 10.4.6 and previous versions, as used in applications that use ImageIO or AppKit, allows remote malicious users to cause a denial of service (application crash) via a crafted TIFF image that triggers a null de...
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.4
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.2
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.6
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.4.4
Apple Mac Os X 10.3
Apple Mac Os X 10.3.7
Apple Mac Os X 10.3.8
Apple Mac Os X Server 10.3
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.6
Apple Mac Os X 10.4.3
Apple Mac Os X 10.4.4
Apple Mac Os X Server 10.3.7
Apple Mac Os X Server 10.3.8
NA
CVE-2011-0170
Heap-based buffer overflow in ImageIO in CoreGraphics in Apple iTunes prior to 10.2 on Windows allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted International Color Consortium (ICC) profile in a JPEG image.
Apple Itunes 4.1.0
Apple Itunes 4.2.0
Apple Itunes 4.7.1
Apple Itunes 4.7.2
Apple Itunes 6.0.1
Apple Itunes 6.0.2
Apple Itunes 7.1.0
Apple Itunes 7.1.1
Apple Itunes 7.4.1
Apple Itunes 7.4.2
Apple Itunes 7.6.2
Apple Itunes 7.7
Apple Itunes 8.2
Apple Itunes 8.2.1
Apple Itunes 10.0
Apple Itunes 10.0.1
Apple Itunes 4.0.0
Apple Itunes 4.0.1
Apple Itunes 4.7
Apple Itunes 4.7.0
Apple Itunes 5.0.1
Apple Itunes 6.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »