VYPR
Vendor

GreycLab

Products
1
CVEs
14
Across products
14
Status
Private

Products

1

Recent CVEs

14
  • CVE-2018-7641HigMar 2, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "32 bits colors" case, aka case 32.

  • CVE-2018-7640HigMar 2, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a Monochrome case, aka case 1.

  • CVE-2018-7639HigMar 2, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "16 bits colors" case, aka case 16.

  • CVE-2018-7638HigMar 2, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "256 colors" case, aka case 8.

  • CVE-2018-7637HigMar 2, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image, a different vulnerability than CVE-2018-7588. This is in a "16 colors" case, aka case 4.

  • CVE-2018-7589HigMar 1, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A double free in load_bmp in CImg.h occurs when loading a crafted bmp image.

  • CVE-2018-7588HigMar 1, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. A heap-based buffer over-read in load_bmp in CImg.h occurs when loading a crafted bmp image.

  • CVE-2018-7587HigMar 1, 2018
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in CImg v.220. DoS occurs when loading a crafted bmp image that triggers an allocation failure in load_bmp in CImg.h.

  • CVE-2026-42144MedMay 4, 2026
    risk 0.33cvss 6.1epss 0.00

    CImg Library is a C++ library for image processing. Prior to commit 4ca26bc, there is an integer overflow vulnerability in the W*H*D size computation inside _load_pnm() that can bypass the memory allocation guard. A crafted PNM/PGM/PPM file with large dimension values causes the…

  • CVE-2026-42146MedMay 4, 2026
    risk 0.29cvss 5.5epss 0.00

    CImg Library is a C++ library for image processing. Prior to commit c3aacf5, the nb_colors field read from the BMP file header is used directly to compute an allocation size without validating it against the remaining file size. A crafted BMP file with a large nb_colors value…

  • CVE-2024-26540Mar 15, 2024
    risk 0.00cvss epss 0.00

    A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library::CImg::_load_analyze.

  • CVE-2022-1325Aug 31, 2022
    risk 0.00cvss epss 0.00

    A flaw was found in Clmg, where with the help of a maliciously crafted pandore or bmp file with modified dx and dy header field values it is possible to trick the application into allocating huge buffer sizes like 64 Gigabyte upon reading the file from disk or from a virtual…

  • CVE-2020-25693Dec 3, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in CImg in versions prior to 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can lead to an impact to application availability or data integrity.

  • CVE-2019-13568Jul 31, 2019
    risk 0.00cvss epss 0.02

    CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image.