CVE-2023-26974 | SynScan

Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2023-26974

Irfanview v4.62 allows a user-mode write access violation via a crafted JPEG 2000 file starting at JPEG2000+0x0000000000001bf0.

Published: Apr 4, 2023
Updated: Apr 14, 2023
CVE: CVE-2023-26974
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
irfanview / irfanview	4.62	4.62.x

https://github.com/overXsky/IrfanviewPoc