Skip to main content

Stb Image H

15 CVEs product

Monthly

CVE-2023-43281 MEDIUM POC This Month

Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbi_load_gif_main function. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Stb Image H
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2023-45667 HIGH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Null Pointer Dereference Stb Image H
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2023-45666 CRITICAL Act Now

stb_image is a single file MIT licensed library for processing images. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Stb Image H
NVD GitHub
CVSS 3.1
9.8
EPSS
1.0%
CVE-2023-45664 HIGH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Stb Image H
NVD GitHub
CVSS 3.1
8.8
EPSS
0.9%
CVE-2023-45663 MEDIUM This Month

stb_image is a single file MIT licensed library for processing images. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Stb Image H
NVD GitHub
CVSS 3.1
5.5
EPSS
0.7%
CVE-2023-45662 HIGH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Stb Image H
NVD GitHub
CVSS 3.1
8.1
EPSS
0.7%
CVE-2023-45661 HIGH PATCH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Stb Image H
NVD GitHub
CVSS 3.1
7.1
EPSS
0.6%
CVE-2023-43898 MEDIUM POC PATCH This Month

Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Null Pointer Dereference Stb Image H
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-28042 HIGH POC PATCH This Week

stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Use After Free Information Disclosure Stb Image H Fedora +1
NVD GitHub
CVSS 3.1
8.8
EPSS
1.6%
CVE-2022-28041 MEDIUM POC PATCH This Month

stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Integer Overflow Stb Image H Fedora Debian Linux
NVD GitHub
CVSS 3.1
6.5
EPSS
2.1%
CVE-2021-42716 HIGH POC This Week

An issue was discovered in stb stb_image.h 2.27. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stb Image H Fedora
NVD GitHub
CVSS 3.1
7.1
EPSS
1.4%
CVE-2021-42715 MEDIUM This Month

An issue was discovered in stb stb_image.h 1.33 through 2.27. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Stb Image H Fedora Debian Linux
NVD GitHub
CVSS 3.1
5.5
EPSS
1.2%
CVE-2019-20056 MEDIUM POC This Month

stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Stb Image H
NVD GitHub
CVSS 3.1
6.5
EPSS
0.9%
CVE-2019-19777 HIGH POC This Week

stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Stb Image H Libsixel
NVD GitHub
CVSS 3.1
8.8
EPSS
0.4%
CVE-2018-16981 HIGH POC This Week

stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Stb Image H Debian Linux
NVD GitHub
CVSS 3.1
8.8
EPSS
1.6%
EPSS 1% CVSS 6.5
MEDIUM POC This Month

Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbi_load_gif_main function. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Stb Image H
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Null Pointer Dereference Stb Image H
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL Act Now

stb_image is a single file MIT licensed library for processing images. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Stb Image H
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Stb Image H
NVD GitHub
EPSS 1% CVSS 5.5
MEDIUM This Month

stb_image is a single file MIT licensed library for processing images. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Stb Image H
NVD GitHub
EPSS 1% CVSS 8.1
HIGH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Stb Image H
NVD GitHub
EPSS 1% CVSS 7.1
HIGH PATCH This Week

stb_image is a single file MIT licensed library for processing images. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Stb Image H
NVD GitHub
EPSS 0% CVSS 5.5
MEDIUM POC PATCH This Month

Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Null Pointer Dereference Stb Image H
NVD GitHub
EPSS 2% CVSS 8.8
HIGH POC PATCH This Week

stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Memory Corruption Use After Free Information Disclosure +3
NVD GitHub
EPSS 2% CVSS 6.5
MEDIUM POC PATCH This Month

stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Integer Overflow Stb Image H +2
NVD GitHub
EPSS 1% CVSS 7.1
HIGH POC This Week

An issue was discovered in stb stb_image.h 2.27. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Stb Image H Fedora
NVD GitHub
EPSS 1% CVSS 5.5
MEDIUM This Month

An issue was discovered in stb stb_image.h 1.33 through 2.27. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Stb Image H Fedora +1
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM POC This Month

stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Stb Image H
NVD GitHub
EPSS 0% CVSS 8.8
HIGH POC This Week

stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Stb Image H +1
NVD GitHub
EPSS 2% CVSS 8.8
HIGH POC This Week

stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Stb Image H +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy