Vendor CVEs
Freeimage Project
All CVEs
54 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-28584 | Low | 0.21 | 3.3 | 0.00 | Mar 20, 2024 | Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the J2KImageToFIBITMAP() function when reading images in J2K format. | ||
| CVE-2025-70968 | 0.00 | — | 0.00 | Jan 14, 2026 | FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE(). | |||
| CVE-2025-65803 | 0.00 | — | 0.00 | Dec 10, 2025 | An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file. | |||
| CVE-2015-0852 | 0.00 | — | 0.03 | Sep 29, 2015 | Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service (heap memory corruption) via vectors related to the height and width of a window. |
- risk 0.21cvss 3.3epss 0.00
Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the J2KImageToFIBITMAP() function when reading images in J2K format.
- CVE-2025-70968Jan 14, 2026risk 0.00cvss —epss 0.00
FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE().
- CVE-2025-65803Dec 10, 2025risk 0.00cvss —epss 0.00
An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.
- CVE-2015-0852Sep 29, 2015risk 0.00cvss —epss 0.03
Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service (heap memory corruption) via vectors related to the height and width of a window.
Page 2 of 2