Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Irfanview — Vulnerabilities & Security Advisories 184

Browse all 184 CVE security advisories affecting Irfanview. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IrfanView is a widely used Windows image viewer and converter, primarily serving casual users and professionals requiring rapid batch processing of graphic files. Despite its utility, the software has accumulated 184 recorded Common Vulnerabilities and Exposures (CVEs), reflecting significant historical security debt. The majority of these flaws involve buffer overflows and memory corruption issues, which frequently enable remote code execution (RCE) when processing maliciously crafted image formats such as TIFF, JPEG, or PNG. While cross-site scripting (XSS) and privilege escalation are less common in this desktop application context, the prevalence of RCE vulnerabilities poses a critical risk, particularly when users open untrusted files. Notable incidents highlight the danger of automated batch processing features, where a single malformed image can trigger arbitrary code execution with the privileges of the current user. Regular updates are essential to mitigate these persistent memory safety defects.

Top products by Irfanview: Irfanview MrSID plugin
CVE IDTitleCVSSSeverityPublished
CVE-2024-11534 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11535 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11536 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11537 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11554 IrfanView DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11520 IrfanView ARW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11521 IrfanView DJVU File Parsing Use-After-Free Remote Code Execution Vulnerability — IrfanViewCWE-416 7.8 -2024-11-22
CVE-2024-11560 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11561 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11563 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11567 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11569 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11574 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11562 IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11570 IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulnerability — IrfanViewCWE-416 7.8 -2024-11-22
CVE-2024-11572 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11575 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11564 IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11565 IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11571 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11573 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11566 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11568 IrfanView DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanViewCWE-125 7.8 -2024-11-22
CVE-2024-11556 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11557 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11558 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability — IrfanViewCWE-119 7.8 -2024-11-22
CVE-2024-11555 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11559 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — IrfanViewCWE-787 7.8 -2024-11-22
CVE-2024-11510 IrfanView WBZ plugin WB1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-121 7.8 -2024-11-22
CVE-2024-11511 IrfanView XCF Plugin XCF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — IrfanViewCWE-122 7.8 -2024-11-22

This page lists every published CVE security advisory associated with Irfanview. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.