Freeimage Project Freeimage vulnerabilities
53 known vulnerabilities affecting freeimage_project/freeimage.
Total CVEs
53
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH21MEDIUM29LOW1
Vulnerabilities
Page 1 of 3
CVE-2025-70968CRITICALCVSS 9.8v3.18.02026-01-14
CVE-2025-70968 [CRITICAL] CWE-416 CVE-2025-70968: FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE().
FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE().
nvd
CVE-2025-65803MEDIUMCVSS 6.5≤ 3.18.02025-12-10
CVE-2025-65803 [MEDIUM] CWE-190 CVE-2025-65803: An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows
An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service (DoS) via supplying a crafted PSD file.
nvd
CVE-2024-31570CRITICALCVSS 9.8≥ 3.4.0, ≤ 3.18.02024-09-19
CVE-2024-31570 [CRITICAL] CWE-787 CVE-2024-31570: libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cp
libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file.
nvd
CVE-2024-28578HIGHCVSS 8.4v3.19.02024-03-20
CVE-2024-28578 [HIGH] CWE-125 CVE-2024-28578: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Load() function when reading images in RAS format.
nvd
CVE-2024-28581HIGHCVSS 8.4v3.19.02024-03-20
CVE-2024-28581 [HIGH] CWE-121 CVE-2024-28581: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the _assignPixel<>() function when reading images in TARGA format.
nvd
CVE-2024-28569HIGHCVSS 7.8v3.19.02024-03-20
CVE-2024-28569 [HIGH] CWE-120 CVE-2024-28569: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::Xdr::read() function when reading images in EXR format.
nvd
CVE-2024-28580HIGHCVSS 8.4v3.19.02024-03-20
CVE-2024-28580 [HIGH] CWE-121 CVE-2024-28580: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the ReadData() function when reading images in RAS format.
nvd
CVE-2024-28583HIGHCVSS 7.8v3.19.02024-03-20
CVE-2024-28583 [HIGH] CWE-120 CVE-2024-28583: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.
nvd
CVE-2024-28566HIGHCVSS 8.4v3.19.02024-03-20
CVE-2024-28566 [HIGH] CWE-121 CVE-2024-28566: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the AssignPixel() function when reading images in TIFF format.
nvd
CVE-2024-28582HIGHCVSS 8.4v3.19.02024-03-20
CVE-2024-28582 [HIGH] CWE-121 CVE-2024-28582: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the rgbe_RGBEToFloat() function when reading images in HDR format.
nvd
CVE-2024-28562MEDIUMCVSS 6.8v3.19.02024-03-20
CVE-2024-28562 [MEDIUM] CWE-787 CVE-2024-28562: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to e
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::copyIntoFrameBuffer() component when reading images in EXR format.
nvd
CVE-2024-28568MEDIUMCVSS 6.2v3.19.02024-03-20
CVE-2024-28568 [MEDIUM] CWE-121 CVE-2024-28568: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the read_iptc_profile() function when reading images in TIFF format.
nvd
CVE-2024-28579MEDIUMCVSS 6.2v3.19.02024-03-20
CVE-2024-28579 [MEDIUM] CWE-125 CVE-2024-28579: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_Unload() function when reading images in HDR format.
nvd
CVE-2024-28576MEDIUMCVSS 5.5v3.19.02024-03-20
CVE-2024-28576 [MEDIUM] CWE-120 CVE-2024-28576: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_tcp_destroy() function when reading images in J2K format.
nvd
CVE-2024-28574MEDIUMCVSS 6.2v3.19.02024-03-20
CVE-2024-28574 [MEDIUM] CWE-121 CVE-2024-28574: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_copy_default_tcp_and_create_tcd() function when reading images in J2K format.
nvd
CVE-2024-28565MEDIUMCVSS 5.5v3.19.02024-03-20
CVE-2024-28565 [MEDIUM] CWE-120 CVE-2024-28565: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the psdParser::ReadImageData() function when reading images in PSD format.
nvd
CVE-2024-28572MEDIUMCVSS 6.2v3.19.02024-03-20
CVE-2024-28572 [MEDIUM] CWE-122 CVE-2024-28572: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_SetTagValue() function when reading images in JPEG format.
nvd
CVE-2024-28573MEDIUMCVSS 6.2v3.19.02024-03-20
CVE-2024-28573 [MEDIUM] CWE-121 CVE-2024-28573: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the jpeg_read_exif_profile() function when reading images in JPEG format.
nvd
CVE-2024-28570MEDIUMCVSS 5.5v3.19.02024-03-20
CVE-2024-28570 [MEDIUM] CWE-120 CVE-2024-28570: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the processMakerNote() function when reading images in JPEG format.
nvd
CVE-2024-28571MEDIUMCVSS 5.5v3.19.02024-03-20
CVE-2024-28571 [MEDIUM] CWE-125 CVE-2024-28571: Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to c
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the fill_input_buffer() function when reading images in JPEG format.
nvd
1 / 3Next →