Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gimp vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2005-0654
gifload.exe in GIMP 2.0.5, 2.2.3, and possibly 2.2.4 allows remote attackers or local users to cause a denial of service (application crash) via the image descriptor (1) height or (2) width fields set to zero.
Gimp Gimp 2.0.5
Gimp Gimp 2.2.3
Gimp Gimp 2.2.4
383
VMScore
CVE-2022-30067
GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge amount of memory, resulting in insufficient memory or program crash.
Gimp Gimp 2.99.10
Gimp Gimp 2.10.30
605
VMScore
CVE-2006-4519
Multiple integer overflows in the image loader plug-ins in GIMP prior to 2.2.16 allow user-assisted remote malicious users to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.
Gimp Gimp
605
VMScore
CVE-2012-4245
The scriptfu network server in GIMP 2.6 does not require authentication, which allows remote malicious users to execute arbitrary commands via the python-fu-eval command.
Gimp Gimp
435
VMScore
CVE-2012-3236
fits-io.c in GIMP prior to 2.8.1 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a malformed XTENSION header of a .fit file, as demonstrated using a long string.
Gimp Gimp
1 EDB exploit
605
VMScore
CVE-2012-3402
Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin in GIMP 2.2.13 and previous versions allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted channels header value in a PSD image file, which triggers ...
Gimp Gimp
445
VMScore
CVE-2007-3126
Gimp prior to 2.8.22 allows context-dependent malicious users to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, a similar issue to CVE-2007-2237.
Gimp Gimp
668
VMScore
CVE-2012-5576
Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.8.2 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large (1) red, (2) green, or (3) blue color mask in an XWD file.
Gimp Gimp
605
VMScore
CVE-2011-1178
Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and previous versions allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PC...
Gimp Gimp
454
VMScore
CVE-2006-3404
Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp prior to 2.2.12 allows user-assisted malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property.
Gimp Gimp
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »