Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IrfanView — Vulnerabilities & Security Advisories 184

Browse all 184 CVE security advisories affecting IrfanView. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IrfanView is a widely used Windows image viewer and converter, primarily serving casual users and professionals requiring rapid batch processing of graphic files. Despite its utility, the software has accumulated 184 recorded Common Vulnerabilities and Exposures (CVEs), reflecting significant historical security debt. The majority of these flaws involve buffer overflows and memory corruption issues, which frequently enable remote code execution (RCE) when processing maliciously crafted image formats such as TIFF, JPEG, or PNG. While cross-site scripting (XSS) and privilege escalation are less common in this desktop application context, the prevalence of RCE vulnerabilities poses a critical risk, particularly when users open untrusted files. Notable incidents highlight the danger of automated batch processing features, where a single malformed image can trigger arbitrary code execution with the privileges of the current user. Regular updates are essential to mitigate these persistent memory safety defects.

Top products by IrfanView: Irfanview MrSID plugin
CVE IDTitleCVSSSeverityPublished
CVE-2024-11512 IrfanView WBZ Plugin WB1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11553 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11539 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11541 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11540 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11542 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11551 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11543 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11549 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11552 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11548 IrfanView DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11547 IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11546 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11545 IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulnerability — IrfanViewCWE-416 7.8 -2024-11-22
CVE-2024-11544 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11550 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11526 IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11527 IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11529 IrfanView DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11530 IrfanView CGM File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11531 IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-6817 IrfanView PSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-6816 IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-6815 IrfanView RLE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-5877 IrfanView PIC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-5876 IrfanView PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22
CVE-2024-5875 IrfanView SHP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-5874 IrfanView PNT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-6812 IrfanView WSQ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8AIHighAI2024-08-21
CVE-2024-6811 IrfanView WSQ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8AIHighAI2024-08-21

This page lists every published CVE security advisory associated with IrfanView. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.