汇总 faststone 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
已披露问题常与 内存损坏、缓冲区溢出与输入验证问题 相关,可能在 软件部署与生产负载 场景中带来 内存损坏与应用崩溃 等暴露风险。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2024-9114 | FastStone Image Viewer GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of GIF files. The issue results from the lack of proper validation of user-supplied data, which can resu | [email protected] | 7.8 | 0.36% | 2024-11-22 | 2026-06-17 |
| CVE-2024-9113 | FastStone Image Viewer TGA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TGA files. The issue results from the lack of proper validation of user-supplied data, which can resu | [email protected] | 7.8 | 0.27% | 2024-11-22 | 2026-06-17 |
| CVE-2024-9112 | FastStone Image Viewer PSD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of user-supplied data, which can resu | [email protected] | 7.8 | 0.27% | 2024-11-22 | 2026-06-17 |
| CVE-2022-36947 | Unsafe Parsing of a PNG tRNS chunk in FastStone Image Viewer through 7.5 results in a stack buffer overflow. | [email protected] | 9.8 | 1.97% | 2022-08-18 | 2026-06-17 |
| CVE-2021-26237 | FastStone Image Viewer <= 7.5 is affected by a user mode write access violation at 0x00402d7d, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution. | [email protected] | 7.8 | 2.73% | 2021-03-18 | 2026-06-16 |
| CVE-2021-26235 | FastStone Image Viewer <= 7.5 is affected by a user mode write access violation near NULL at 0x005bdfc9, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution. | [email protected] | 7.8 | 1.06% | 2021-03-18 | 2026-06-16 |
| CVE-2021-26234 | FastStone Image Viewer <= 7.5 is affected by a user mode write access violation at 0x00402d8a, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution. | [email protected] | 7.8 | 1.06% | 2021-03-18 | 2026-06-16 |
| CVE-2021-26233 | FastStone Image Viewer <= 7.5 is affected by a user mode write access violation near NULL at 0x005bdfcb, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service (DoS) or possibly to achieve code execution. | [email protected] | 7.8 | 1.06% | 2021-03-18 | 2026-06-16 |
| CVE-2021-26236 | FastStone Image Viewer v.<= 7.5 is affected by a Stack-based Buffer Overflow at 0x005BDF49, affecting the CUR file parsing functionality (BITMAPINFOHEADER Structure, 'BitCount' file format field), that will end up corrupting the Structure Exception Handler (SEH). Attackers could exploit this issue to achieve code execution when a user opens or views a malformed/specially crafted CUR file. | [email protected] | 7.8 | 1.97% | 2021-03-18 | 2026-06-16 |
| CVE-2020-35845 | FastStone Image Viewer 7.5 has an out-of-bounds write (via a crafted image file) at FSViewer.exe+0x96cf. | [email protected] | 7.8 | 0.89% | 2021-01-26 | 2026-06-16 |
| CVE-2020-35844 | FastStone Image Viewer 7.5 has an out-of-bounds write (via a crafted image file) at FSViewer.exe+0xbe9c4. | [email protected] | 7.8 | 0.92% | 2021-01-26 | 2026-06-16 |
| CVE-2020-35843 | FastStone Image Viewer 7.5 has an out-of-bounds write (via a crafted image file) at FSViewer.exe+0x956e. | [email protected] | 5.5 | 0.75% | 2021-01-26 | 2026-06-16 |
| CVE-2019-13246 | FastStone Image Viewer 7.0 has a User Mode Write AV starting at image00400000+0x00000000001a9601. | [email protected] | 7.8 | 1.21% | 2019-07-04 | 2026-06-16 |
| CVE-2019-13245 | FastStone Image Viewer 7.0 has a User Mode Write AV starting at image00400000+0x00000000001a95b1. | [email protected] | 7.8 | 1.21% | 2019-07-04 | 2026-06-16 |
| CVE-2019-13244 | FastStone Image Viewer 7.0 has a User Mode Write AV starting at image00400000+0x0000000000002d7d. | [email protected] | 7.8 | 1.21% | 2019-07-04 | 2026-06-16 |
| CVE-2018-15817 | FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d63 via a crafted image file. | [email protected] | 5.5 | 0.83% | 2019-03-26 | 2026-06-16 |
| CVE-2018-15816 | FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d7d via a crafted image file. | [email protected] | 5.5 | 0.83% | 2019-03-26 | 2026-06-16 |
| CVE-2018-15815 | FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at image00400000+0x00000000003ef68a via a crafted image file. | [email protected] | 5.5 | 0.83% | 2019-03-26 | 2026-06-16 |
| CVE-2018-15814 | FastStone Image Viewer 6.5 has a User Mode Write AV starting at image00400000+0x00000000001cb509 via a crafted image file. | [email protected] | 5.5 | 0.83% | 2019-03-26 | 2026-06-16 |
| CVE-2018-15813 | FastStone Image Viewer 6.5 has a User Mode Write AV starting at image00400000+0x00000000000e1237 via a crafted image file. | [email protected] | 5.5 | 0.83% | 2019-03-26 | 2026-06-16 |