CVE-2018-15175

HIGH

XnView 2.45 - DoS

Title source: llm

Description

XnView 2.45 allows remote attackers to cause a denial of service (User Mode Write AV starting at Qt5Core!QVariant::~QVariant+0x0000000000000014 and application crash) or possibly have unspecified other impact via a crafted RLE file.

References (1)

[Exploit, Issue Tracking, Third Party Advisory] http://code610.blogspot.com/2018/08/updating-xnview.html

Scores

CVSS v3 7.8

EPSS 0.0023

EPSS Percentile 46.0%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-119

Status published

Affected Products (1)

xnview/xnview

Timeline

Published Aug 08, 2018

Tracked Since Feb 18, 2026