Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-44914

An issue in the component EXR!ReadEXR+0x3df50 of Irfanview v4.67.1.0 allows attackers to cause an access violation via a crafted EXR file. This vulnerability can lead to a Denial of Service (DoS).

Published

2024-08-28T18:15:09.780

Last Modified

2025-05-23T13:58:50.630

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-Other
Type: Secondary
CWE-284

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	irfanview	exr	4.67.1	Yes

References

https://github.com/yuhano/irfanview_Poc Exploit, Third Party Advisory ([email protected])