Vulnerabilities (CVE)

Filtered by vendor Xnview Subscribe

Filtered by product Xnview

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2013-3492	1 Xnview	1 Xnview	2020-01-30	7.5 HIGH	9.8 CRITICAL
XnView 2.03 has a stack-based buffer overflow vulnerability
CVE-2013-3493	1 Xnview	1 Xnview	2020-01-29	7.5 HIGH	9.8 CRITICAL
XnView 2.03 has an integer overflow vulnerability
CVE-2013-3941	1 Xnview	1 Xnview	2020-01-08	7.5 HIGH	9.8 CRITICAL
Xjp2.dll in XnView before 2.13 allows remote attackers to execute arbitrary code via (1) the Csiz parameter in a SIZ marker, which triggers an incorrect memory allocation, or (2) the lqcd field in a QCD marker in a crafted JPEG2000 file, which leads to a heap-based buffer overflow.