Vulnerabilities > Jasper Project

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-16	CVE-2023-51257	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Jasper Project Jasper An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execute arbitrary code. local low complexity jasper-project CWE-119	7.8
2022-10-14	CVE-2022-2963	Memory Leak vulnerability in multiple products A vulnerability found in jasper. network low complexity jasper-project fedoraproject redhat CWE-401	7.5
2021-07-15	CVE-2021-27845	Divide By Zero vulnerability in Jasper Project Jasper A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpc_enc.c network jasper-project CWE-369	4.3
2021-03-25	CVE-2021-3467	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 image format decoder. local low complexity jasper-project fedoraproject CWE-476	5.5
2021-03-25	CVE-2021-3443	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder. network jasper-project redhat fedoraproject CWE-476	4.3
2021-02-23	CVE-2021-26927	NULL Pointer Dereference vulnerability in multiple products A flaw was found in jasper before 2.0.25. local low complexity jasper-project fedoraproject CWE-476	5.5
2021-02-23	CVE-2021-26926	Out-of-bounds Read vulnerability in multiple products A flaw was found in jasper before 2.0.25. local low complexity jasper-project fedoraproject CWE-125	7.1
2021-01-27	CVE-2021-3272	Out-of-bounds Read vulnerability in multiple products jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components. local low complexity jasper-project fedoraproject CWE-125	5.5
2020-12-11	CVE-2020-27828	Improper Input Validation vulnerability in multiple products There's a flaw in jasper's jpc encoder in versions prior to 2.0.23. local low complexity jasper-project fedoraproject CWE-20	7.8
2020-02-17	CVE-2015-8751	Integer Overflow or Wraparound vulnerability in Jasper Project Jasper 1.900.1/1.900.2/1.900.3 Integer overflow in the jas_matrix_create function in JasPer allows context-dependent attackers to have unspecified impact via a crafted JPEG 2000 image, related to integer multiplication for memory allocation. network low complexity jasper-project CWE-190	8.8

Vulnerabilities > Jasper Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jasper Project"}]}

Vulnerabilities > Jasper Project