VYPR

Vendor CVEs

Freeimage Project

All CVEs

54 total · sorted by risk
  • CVE-2024-28584LowMar 20, 2024
    risk 0.21cvss 3.3epss 0.00

    Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the J2KImageToFIBITMAP() function when reading images in J2K format.

  • CVE-2025-70968Jan 14, 2026
    risk 0.00cvss epss 0.00

    FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE().

  • CVE-2025-65803Dec 10, 2025
    risk 0.00cvss epss 0.00

    An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.

  • CVE-2015-0852Sep 29, 2015
    risk 0.00cvss epss 0.03

    Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and earlier allow remote attackers to cause a denial of service (heap memory corruption) via vectors related to the height and width of a window.

Page 2 of 2