Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GIMP — Vulnerabilities & Security Advisories 30

Browse all 30 CVE security advisories affecting GIMP. AI-powered Chinese analysis, POCs, and references for each vulnerability.

GIMP is a free and open-source raster graphics editor primarily used for image manipulation, composition, and conversion. As a desktop application rather than a web service, it does not typically suffer from remote code execution or cross-site scripting vulnerabilities common in server-side software. Its security profile is largely defined by local privilege escalation risks and memory corruption issues within its core libraries, such as ImageMagick, which it relies on for parsing various file formats. Historically, flaws have allowed attackers to execute arbitrary code or crash the application through malformed images, though these rarely impact system integrity beyond the user’s session. The current record of thirty Common Vulnerabilities and Exposures highlights ongoing maintenance challenges in its complex codebase. While no major widespread breaches have occurred, the reliance on external libraries necessitates rigorous patching to mitigate potential exploitation vectors for local users.

Top products by GIMP: GIMP
CVE IDTitleCVSSSeverityPublished
CVE-2026-4154 GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2026-04-11
CVE-2026-4153 GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2026-04-11
CVE-2026-4152 GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2026-04-11
CVE-2026-4151 GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2026-04-11
CVE-2026-4150 GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2026-04-11
CVE-2026-2048 GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — GIMPCWE-787 7.8AIHighAI2026-02-20
CVE-2026-2047 GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2026-02-20
CVE-2026-2045 GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — GIMPCWE-787 7.8AIHighAI2026-02-20
CVE-2026-2044 GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability — GIMPCWE-908 7.8AIHighAI2026-02-20
CVE-2026-0797 GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2026-02-20
CVE-2025-15059 GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8 -2026-01-23
CVE-2025-14425 GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2025-12-23
CVE-2025-14424 GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability — GIMPCWE-416 7.8AIHighAI2025-12-23
CVE-2025-14423 GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-121 7.8AIHighAI2025-12-23
CVE-2025-14422 GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2025-12-23
CVE-2025-10934 GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2025-10-29
CVE-2025-10925 GIMP ILBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-121 7.8AIHighAI2025-10-29
CVE-2025-10924 GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2025-10-29
CVE-2025-10923 GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2025-10-29
CVE-2025-10922 GIMP DCM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2025-10-29
CVE-2025-10921 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8AIHighAI2025-10-29
CVE-2025-10920 GIMP ICNS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — GIMPCWE-787 7.8AIHighAI2025-10-29
CVE-2025-8672 TCC Bypass via Inherited Permissions in Bundled Interpreter in GIMP.app — GIMPCWE-276 6.6AIMediumAI2025-08-11
CVE-2025-5473 GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8AIHighAI2025-06-06
CVE-2025-2761 GIMP FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — GIMPCWE-787 7.8 -2025-04-23
CVE-2025-2760 GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8 -2025-04-23
CVE-2023-44444 GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability — GIMPCWE-193 7.8 -2024-05-03
CVE-2023-44443 GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability — GIMPCWE-190 7.8 -2024-05-03
CVE-2023-44442 GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8 -2024-05-03
CVE-2023-44441 GIMP DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — GIMPCWE-122 7.8 -2024-05-03

This page lists every published CVE security advisory associated with GIMP. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.