CVE-2024-28578

HIGH Year: 2024
CVSS v3 Score
8.4
High
Weakness Type
CWE-125
View all →

Vulnerability Description

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Load() function when reading images in RAS format.

Related Vulnerabilities

CVE-1999-0029

HIGH
CVSS:8.4(High)

root privileges via buffer overflow in ordist command on SGI IRIX systems.

CWE-1251999

CVE-2016-20022

HIGH
CVSS:8.4(High)

In the Linux kernel before 4.8, usb_parse_endpoint in drivers/usb/core/config.c does not validate the wMaxPacketSize field of an endpoint descriptor. NOTE: This vulnerability only affects products tha...

CWE-1252016

CVE-2017-6295

HIGH
CVSS:8.4(High)

NVIDIA TrustZone Software contains a vulnerability in the Keymaster implementation where the software reads data past the end, or before the beginning, of the intended buffer; and may lead to denial o...

CWE-1252017

CVE-2020-3960

HIGH
CVSS:8.4(High)

VMware ESXi (6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain an out-of-bounds read vulnerability in NVMe...

CWE-1252020

CVE-2022-0393

HIGH
CVSS:8.4(High)

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

CWE-1252022