Zerojackyi

#8386of 53,622
32.7Total CVSS
Vulnerabilities · 5
Medium
3
High
2
PT-2026-36080
4.0
2026-04-30
Unknown · Little Cms · CVE-2026-42798
**Name of the Vulnerable Software and Affected Versions** Little CMS (lcms2) versions 2.16 through 2.18 **Description** An integer overflow exists in the `ParseCube()` function within the `cmscgats.c` file. An integer overflow occurs when a program attempts to store a numeric value that is too large for the allocated storage space, potentially leading to unexpected behavior. **Recommendations** Update to version 2.19.
PT-2026-22695
7.5
2026-01-01
Exiv2 · Exiv2 · CVE-2026-27596
**Name of the Vulnerable Software and Affected Versions** Exiv2 versions prior to 0.28.8 **Description** Exiv2 is a C++ library and a command-line utility used to read, write, delete, and modify image metadata formats like Exif, IPTC, XMP, and ICC. A flaw exists in the preview component that can lead to an out-of-bounds read when Exiv2 is executed with an additional command-line argument, such as `-pp`. This out-of-bounds read occurs at a 4GB offset, typically resulting in a crash of the Exiv2 application. The `LoaderNative::getData()` function is implicated in this issue. **Recommendations** Versions prior to 0.28.8 should be updated to version 0.28.8 or later.
PT-2026-24125
6.8
2026-01-01
Unknown · Imagemagick · CVE-2026-28686
**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-16 ImageMagick versions prior to 6.9.13-41 **Description** ImageMagick is software used for editing and manipulating digital images. A heap-buffer-overflow issue exists in the PCL encode functionality due to an undersized output buffer allocation. **Recommendations** Update to ImageMagick version 7.1.2-16 or later. Update to ImageMagick version 6.9.13-41 or later.
PT-2026-24129
6.9
2026-01-01
Unknown · Imagemagick · CVE-2026-28690
**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-16 ImageMagick versions prior to 6.9.13-41 **Description** ImageMagick is software used for editing and manipulating digital images. A stack buffer overflow exists in the MNG encoder due to missing bounds checks, potentially allowing an attacker to corrupt the stack with controlled data. **Recommendations** Update ImageMagick to version 7.1.2-16 or later. Update ImageMagick to version 6.9.13-41 or later.
PT-2026-24130
7.5
2026-01-01
Unknown · Imagemagick · CVE-2026-28691
**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-16 ImageMagick versions prior to 6.9.13-41 **Description** ImageMagick is software used for editing and manipulating digital images. A flaw exists in the JBIG decoder due to a missing check, leading to an uninitialized pointer dereference. **Recommendations** Update ImageMagick to version 7.1.2-16 or later. Update ImageMagick to version 6.9.13-41 or later.