Shodan
Vulnerabilities
Vulnerable Software
Freeimage Project:  >> Freeimage  Security Vulnerabilities
CVE-2020-24293
Buffer Overflow vulnerability in psdThumbnail::Read in PSDParser.cpp in FreeImage 3.19.0 [r1859] allows remote attackers to run arbitrary code via opening of crafted psd file.
CVSS Score
8.8
EPSS Score
0.012
Published
2023-08-22
CVE-2020-24294
Buffer Overflow vulnerability in psdParser::UnpackRLE function in PSDParser.cpp in FreeImage 3.19.0 [r1859] allows remote attackers to cuase a denial of service via opening of crafted psd file.
CVSS Score
6.5
EPSS Score
0.009
Published
2023-08-22
CVE-2020-24295
Buffer Overflow vulnerability in PSDParser.cpp::ReadImageLine() in FreeImage 3.19.0 [r1859] allows remote attackers to ru narbitrary code via use of crafted psd file.
CVSS Score
8.8
EPSS Score
0.012
Published
2023-08-22
CVE-2020-21428
Buffer Overflow vulnerability in function LoadRGB in PluginDDS.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-08-22
CVE-2020-21427
Buffer Overflow vulnerability in function LoadPixelDataRLE8 in PluginBMP.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
CVSS Score
7.8
EPSS Score
0.008
Published
2023-08-22
CVE-2020-21426
Buffer Overflow vulnerability in function C_IStream::read in PluginEXR.cpp in FreeImage 3.18.0 allows remote attackers to run arbitrary code and cause other impacts via crafted image file.
CVSS Score
7.8
EPSS Score
0.005
Published
2023-08-22
CVE-2021-33367
Buffer Overflow vulnerability in Freeimage v3.18.0 allows attacker to cause a denial of service via a crafted JXR file.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-22
CVE-2019-12211
When FreeImage 3.18.0 reads a tiff file, it will be handed to the Load function of the PluginTIFF.cpp file, but a memcpy occurs in which the destination address and the size of the copied data are not considered, resulting in a heap overflow.
CVSS Score
7.5
EPSS Score
0.01
Published
2019-05-20
CVE-2019-12212
When FreeImage 3.18.0 reads a special JXR file, the StreamCalcIFDSize function of JXRMeta.c repeatedly calls itself due to improper processing of the file, eventually causing stack exhaustion. An attacker can achieve a remote denial of service attack by sending a specially constructed file.
CVSS Score
7.5
EPSS Score
0.006
Published
2019-05-20
CVE-2019-12213
When FreeImage 3.18.0 reads a special TIFF file, the TIFFReadDirectory function in PluginTIFF.cpp always returns 1, leading to stack exhaustion.
CVSS Score
6.5
EPSS Score
0.003
Published
2019-05-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved