Ruanxingzhi - Security Researcher - Exploit Intelligence Platform

CVE-2024-28563 WRITEUP MEDIUM WORKING POC

FreeImage 3.19.0 - Stack-based Buffer Overflow in EXR Image Classifier

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::DwaCompressor::Classifier::Classifier() function when reading images in EXR format.

CVSS 5.9

View Code

CVE-2024-28571 WRITEUP MEDIUM WORKING POC

FreeImage 3.19.0 - Denial of Service via JPEG Image Processing Buffer Overflow

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the fill_input_buffer() function when reading images in JPEG format.

CVSS 5.5

View Code

CVE-2024-28574 WRITEUP MEDIUM WORKING POC

FreeImage 3.19.0 - Denial of Service via opj_j2k_copy_default_tcp_and_create_tcd Function

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K format.

CVSS 6.2

View Code

CVE-2024-28582 WRITEUP HIGH WORKING POC

FreeImage 3.19.0 - Stack-based Buffer Overflow in rgbe_RGBEToFloat Function

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the rgbe_RGBEToFloat() function when reading images in HDR format.

CVSS 8.4

View Code