Ruanxingzhi - Security Researcher - Exploit Intelligence Platform

CVE-2024-28563 WRITEUP MEDIUM WORKING POC

Freeimage - Stack Buffer Overflow

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::DwaCompressor::Classifier::Classifier() function when reading images in EXR format.

CVSS 5.9

View Code

CVE-2024-28571 WRITEUP MEDIUM WORKING POC

Freeimage - Out-of-Bounds Read

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the fill_input_buffer() function when reading images in JPEG format.

CVSS 5.5

View Code

CVE-2024-28574 WRITEUP MEDIUM WORKING POC

Freeimage - Stack Buffer Overflow

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K format.

CVSS 6.2

View Code

CVE-2024-28582 WRITEUP HIGH WORKING POC

Freeimage - Stack Buffer Overflow

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the rgbe_RGBEToFloat() function when reading images in HDR format.

CVSS 8.4

View Code