This page lists publicly disclosed CVE vulnerabilities affecting pl32 photoline (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-3923 | A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.54. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.48% | 2018-08-01 | 2026-06-16 |
| CVE-2018-3922 | A memory corruption vulnerability exists in the ANI-parsing functionality of Computerinsel Photoline 20.54. A specially crafted ANI image processed via the application can lead to a stack overflow, overwriting arbitrary data. An attacker can deliver an ANI image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.47% | 2018-08-01 | 2026-06-16 |
| CVE-2018-3921 | A memory corruption vulnerability exists in the PSD-parsing functionality of Computerinsel Photoline 20.54. A specially crafted PSD image processed via the application can lead to a stack overflow, overwriting arbitrary data. An attacker can deliver a PSD image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.47% | 2018-08-01 | 2026-06-16 |
| CVE-2017-12107 | An memory corruption vulnerability exists in the .PCX parsing functionality of Computerinsel Photoline 20.02. A specially crafted .PCX file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .PCX file to trigger this vulnerability. | [email protected] | 8.8 | 1.27% | 2018-04-24 | 2026-06-16 |
| CVE-2018-3889 | A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.50% | 2018-04-12 | 2026-06-16 |
| CVE-2018-3888 | A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.47% | 2018-04-11 | 2026-06-16 |
| CVE-2018-3887 | A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.47% | 2018-04-11 | 2026-06-16 |
| CVE-2018-3886 | A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this vulnerability and gain code execution. | [email protected] | 7.8 | 1.47% | 2018-04-11 | 2026-06-16 |
| CVE-2017-2920 | An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file to trigger this vulnerability. | [email protected] | 7.8 | 1.84% | 2017-10-05 | 2026-06-16 |
| CVE-2017-2880 | An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel Photoline 20.02. A specially crafted .GIF file can cause a vulnerability resulting in potential code execution. An attacker can send specific .GIF file to trigger this vulnerability. | [email protected] | 7.8 | 1.45% | 2017-10-05 | 2026-06-16 |
| CVE-2017-12106 | A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability. | [email protected] | 8.8 | 1.76% | 2017-10-05 | 2026-06-16 |
| CVE-2012-1055 | Heap-based buffer overflow in PhotoLine 17.01 and possibly other versions before 17.02 allows remote attackers to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment. | [email protected] | 6.8 | 2.66% | 2012-02-13 | 2026-06-16 |