Xnview : Security Vulnerabilities, CVEs, (Memory corruption)
XnView Classic before 2.51.3 on Windows has a Write Access Violation at xnview.exe+0x3125D6.
Max CVSS
9.8
EPSS Score
0.11%
Published
2023-12-29
Updated
2024-01-04
XnView Classic before 2.51.3 on Windows has a Write Access Violation at xnview.exe+0x3ADBD0.
Max CVSS
9.8
EPSS Score
0.09%
Published
2023-12-29
Updated
2024-01-04
XNSoft Nconvert 7.136 is vulnerable to Buffer Overflow via a crafted image file.
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-10-19
Updated
2023-10-25
XnView MP v0.96.4 was discovered to contain a heap overflow which allows attackers to cause a denial of service (DoS) via a crafted ico file. Related to a Read Access Violation starting at USER32!SmartStretchDIBits+0x33.
Max CVSS
5.5
EPSS Score
0.08%
Published
2021-11-10
Updated
2021-11-15
XnView MP v0.96.4 was discovered to contain a heap overflow which allows attackers to cause a denial of service (DoS) via a crafted pict file. Related to a User Mode Write AV starting at ntdll!RtlpLowFragHeapFree.
Max CVSS
5.5
EPSS Score
0.07%
Published
2021-11-10
Updated
2022-10-26
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001fc0.
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-10-08
Updated
2019-10-10
XnView Classic 2.49.1 allows a User Mode Write AV starting at Xwsq+0x0000000000001e51.
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-10-08
Updated
2019-10-10
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000327464.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2021-07-21
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000032e808.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2021-07-21
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000385474.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-07-04
Updated
2021-07-21
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000030ecfa.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-06-30
Updated
2019-07-03
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000026b739.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-06-30
Updated
2019-07-03
XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000384e2a.
Max CVSS
7.8
EPSS Score
0.09%
Published
2019-06-30
Updated
2019-07-03
Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow.
Max CVSS
9.8
EPSS Score
0.89%
Published
2020-01-02
Updated
2020-01-08
xnview.exe in XnView before 2.13 does not properly handle RLE strip lengths during processing of RGB files, which allows remote attackers to execute arbitrary code via the RLE strip size field in a RGB file, which leads to an unexpected sign extension error and a heap-based buffer overflow.
Max CVSS
7.8
EPSS Score
0.37%
Published
2020-01-02
Updated
2020-01-15
Heap-based buffer overflow in xnview.exe in XnView before 2.13 allows remote attackers to execute arbitrary code via the biBitCount field in a BMP file.
Max CVSS
7.8
EPSS Score
0.44%
Published
2020-01-02
Updated
2020-01-08
XnView 2.03 has a stack-based buffer overflow vulnerability
Max CVSS
9.8
EPSS Score
0.28%
Published
2020-01-27
Updated
2020-01-30
Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file.
Max CVSS
7.8
EPSS Score
0.36%
Published
2020-01-02
Updated
2020-01-03
Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file.
Max CVSS
7.8
EPSS Score
1.56%
Published
2020-01-02
Updated
2020-01-03
19 vulnerabilities found