Shodan
Vulnerabilities
Vulnerable Software
Freeimage Project:  Security Vulnerabilities
CVE-2024-9029
A flaw was found in the freeimage library. Processing a crafted image can cause a buffer over-read of 1 byte in the read_iptc_profile function in the Source/Metadata/IPTC.cpp file because the size of the profile is not being sanitized, causing a crash in the application linked to the library, resulting in a denial of service.
CVSS Score
7.5
EPSS Score
0.002
Published
2024-09-27
CVE-2024-31570
libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-09-19
CVE-2024-28583
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-03-20
CVE-2024-28584
Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the J2KImageToFIBITMAP() function when reading images in J2K format.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-03-20
CVE-2024-28577
Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile_raw() function when reading images in JPEG format.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-03-20
CVE-2024-28578
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Load() function when reading images in RAS format.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-03-20
CVE-2024-28579
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_Unload() function when reading images in HDR format.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-03-20
CVE-2024-28580
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the ReadData() function when reading images in RAS format.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-03-20
CVE-2024-28581
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the _assignPixel<>() function when reading images in TARGA format.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-03-20
CVE-2024-28582
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the rgbe_RGBEToFloat() function when reading images in HDR format.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-03-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved