Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IrfanView — Vulnerabilities & Security Advisories 184

Browse all 184 CVE security advisories affecting IrfanView. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IrfanView is a widely used Windows image viewer and converter, primarily serving casual users and professionals requiring rapid batch processing of graphic files. Despite its utility, the software has accumulated 184 recorded Common Vulnerabilities and Exposures (CVEs), reflecting significant historical security debt. The majority of these flaws involve buffer overflows and memory corruption issues, which frequently enable remote code execution (RCE) when processing maliciously crafted image formats such as TIFF, JPEG, or PNG. While cross-site scripting (XSS) and privilege escalation are less common in this desktop application context, the prevalence of RCE vulnerabilities poses a critical risk, particularly when users open untrusted files. Notable incidents highlight the danger of automated batch processing features, where a single malformed image can trigger arbitrary code execution with the privileges of the current user. Regular updates are essential to mitigate these persistent memory safety defects.

Top products by IrfanView: Irfanview MrSID plugin
CVE IDTitleCVSSSeverityPublished
CVE-2025-7294 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7298 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7293 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7292 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7291 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7290 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7285 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7284 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7289 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7288 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7287 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7286 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7283 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7282 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7281 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7280 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7279 IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7278 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7274 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7277 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7276 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7275 IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7272 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7271 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7273 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7270 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21
CVE-2025-7269 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7268 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7267 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2025-7266 IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2025-07-21

This page lists every published CVE security advisory associated with IrfanView. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.