Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opencv vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-7713
The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote malicious users to cause a denial of service (assertion failure) because (size.width <= (1<<20)) may be false. Note: “OpenCV CV_Assert is not an assertion (C-lik...
Opencv Opencv 3.4.1
9.8
CVSSv3
CVE-2019-10061
utils/find-opencv.js in node-opencv (aka OpenCV bindings for Node.js) before 6.1.0 is vulnerable to Command Injection. It does not validate user input allowing malicious users to execute arbitrary commands.
Node-opencv Project Node-opencv
7.5
CVSSv3
CVE-2017-16067
node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Node-opencv Project Node-opencv
7.5
CVSSv3
CVE-2019-14492
An issue exists in OpenCV prior to 3.4.7 and 4.x prior to 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
Opencv Opencv
Opensuse Leap 15.1
7.5
CVSSv3
CVE-2019-14493
An issue exists in OpenCV prior to 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at modules/core/src/persistence.cpp.
Opencv Opencv
Debian Debian Linux 9.0
8.1
CVSSv3
CVE-2016-10658
native-opencv is the OpenCV library installed via npm native-opencv downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker controlled copy i...
Native-opencv Project Native-opencv 3.0.0
6.5
CVSSv3
CVE-2019-19624
An out-of-bounds read exists in OpenCV prior to 4.1.1. Specifically, variable coarsest_scale is assumed to be greater than or equal to finest_scale within the calc()/ocl_calc() functions in dis_flow.cpp. However, this is not true when dealing with small images, leading to an out-...
Opencv Opencv
Redhat Enterprise Linux 8.0
6.5
CVSSv3
CVE-2017-14136
OpenCV (Open Source Computer Vision Library) 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12597.
Opencv Opencv 3.3.0
Debian Debian Linux 8.0
5.9
CVSSv3
CVE-2019-15939
An issue exists in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp.
Opencv Opencv
Opensuse Leap 15.1
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2017-12862
In modules/imgcodecs/src/grfmt_pxm.cpp, the length of buffer AutoBuffer _src is small than expected, which will cause copy buffer overflow later. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and previous versions.
Opencv Opencv
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »