Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IrfanView — Vulnerabilities & Security Advisories 184

Browse all 184 CVE security advisories affecting IrfanView. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IrfanView is a widely used Windows image viewer and converter, primarily serving casual users and professionals requiring rapid batch processing of graphic files. Despite its utility, the software has accumulated 184 recorded Common Vulnerabilities and Exposures (CVEs), reflecting significant historical security debt. The majority of these flaws involve buffer overflows and memory corruption issues, which frequently enable remote code execution (RCE) when processing maliciously crafted image formats such as TIFF, JPEG, or PNG. While cross-site scripting (XSS) and privilege escalation are less common in this desktop application context, the prevalence of RCE vulnerabilities poses a critical risk, particularly when users open untrusted files. Notable incidents highlight the danger of automated batch processing features, where a single malformed image can trigger arbitrary code execution with the privileges of the current user. Regular updates are essential to mitigate these persistent memory safety defects.

Top products by IrfanView: Irfanview MrSID plugin
CVE IDTitleCVSSSeverityPublished
CVE-2025-7251 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2025-07-21
CVE-2024-6822 IrfanView CIN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-6821 IrfanView CIN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-6820 IrfanView AWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-6819 IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-6818 IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-9261 IrfanView SID File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-121 7.8 -2024-11-22
CVE-2024-9260 IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-9259 IrfanView SID File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-9767 IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-9258 IrfanView SID File Parsing Uninitialized Pointer Remote Code Execution Vulnerability — IrfanViewCWE-824 7.8 -2024-11-22
CVE-2024-11507 IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulnerability — IrfanViewCWE-843 7.8 -2024-11-22
CVE-2024-11508 IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulnerability — IrfanViewCWE-843 7.8 -2024-11-22
CVE-2024-11509 IrfanView SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-11513 IrfanView ECW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-11516 IrfanView JPM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-11514 IrfanView ECW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-11515 IrfanView JPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11517 IrfanView JPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11518 IrfanView RLE File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-11519 IrfanView RLE File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11506 IrfanView DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11524 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11523 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11525 IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulnerability — IrfanViewCWE-416 7.8 -2024-11-22
CVE-2024-11522 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11528 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11538 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11532 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11533 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22

This page lists every published CVE security advisory associated with IrfanView. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.