Vulnerabilities > Irfanview
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-05 | CVE-2020-13880 | Out-of-bounds Write vulnerability in Irfanview B3D IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+1cbf heap-based out-of-bounds write. | 9.8 |
| 2024-01-05 | CVE-2020-13878 | Out-of-bounds Write vulnerability in Irfanview B3D IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+27ef heap-based out-of-bounds write. | 9.8 |
| 2024-01-05 | CVE-2020-13879 | Out-of-bounds Write vulnerability in Irfanview B3D IrfanView B3D PlugIns before version 4.56 has a B3d.dll!+214f heap-based out-of-bounds write. | 9.8 |
| 2022-03-23 | CVE-2021-46064 | Classic Buffer Overflow vulnerability in Irfanview 4.59 IrfanView 4.59 is vulnerable to buffer overflow via the function at address 0x413c70 (in 32bit version of the binary). | 7.8 |
| 2021-12-15 | CVE-2020-23545 | Unspecified vulnerability in Irfanview 4.54 IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ReadXPM_W+0x0000000000000531. network irfanview | 6.8 |
| 2021-11-05 | CVE-2020-23565 | Unspecified vulnerability in Irfanview 4.53 Irfanview v4.53 allows attackers to execute arbitrary code via a crafted JPEG 2000 file. network irfanview | 6.8 |
| 2021-11-05 | CVE-2020-23566 | Infinite Loop vulnerability in Irfanview 4.53 Irfanview v4.53 was discovered to contain an infinity loop via JPEG2000!ShowPlugInSaveOptions_W+0x1ecd8. | 4.3 |
| 2021-11-05 | CVE-2020-23567 | Divide By Zero vulnerability in Irfanview 4.53 Irfanview v4.53 allows attackers to to cause a denial of service (DoS) via a crafted JPEG 2000 file. | 4.3 |
| 2021-10-28 | CVE-2020-23546 | Unspecified vulnerability in Irfanview 4.54 IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted XBM file, related to a "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at FORMATS!ReadMosaic+0x0000000000000981. network irfanview | 6.8 |
| 2021-10-28 | CVE-2020-23549 | Unspecified vulnerability in Irfanview 4.54 IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted .cr2 file, related to a "Data from Faulting Address controls Branch Selection starting at FORMATS!GetPlugInInfo+0x00000000000047f6". network irfanview | 6.8 |