Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw libraw vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2020-24870
Libraw prior to 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
Libraw Libraw
4.3
CVSSv2
CVE-2018-5804
A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.8 can be exploited to trigger a division by zero.
Libraw Libraw
6.8
CVSSv2
CVE-2018-5809
An error within the "LibRaw::parse_exif()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
Libraw Libraw
6.4
CVSSv2
CVE-2017-14608
In LibRaw up to and including 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/dcraw_common.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.
Libraw Libraw
7.5
CVSSv2
CVE-2015-8366
Array index error in smal_decode_segment function in LibRaw prior to 0.17.1 allows context-dependent malicious users to cause memory errors and possibly execute arbitrary code via vectors related to indexes.
Libraw Libraw
7.5
CVSSv2
CVE-2015-8367
The phase_one_correct function in Libraw prior to 0.17.1 allows malicious users to cause memory errors and possibly execute arbitrary code, related to memory object initialization.
Libraw Libraw
7.5
CVSSv2
CVE-2017-14265
A Stack-based Buffer Overflow exists in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw prior to 0.18.3. It could allow a remote denial of service or code execution attack.
Libraw Libraw
6.8
CVSSv2
CVE-2017-14348
LibRaw prior to 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file.
Libraw Libraw
NA
CVE-2020-22628
Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.
Libraw Libraw
5.1
CVSSv2
CVE-2020-24889
A buffer overflow vulnerability in LibRaw version < 20.0 LibRaw::GetNormalizedModel in src/metadata/normalize_model.cpp may lead to context-dependent arbitrary code execution.
Libraw Libraw
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »