CNNVD-202507-2722 Information

CNNVD ID

CNNVD-202507-2722

Related CVE

CVE-2025-7233

• CNNVD Published: 2025-07-21

Description (Chinese)

IrfanView CADImage Plugin是IrfanView公司的一个CAD插件。 IrfanView CADImage Plugin存在缓冲区错误漏洞，该漏洞源于解析DWG文件时存在越界读取，可能导致信息泄露。

Description (English)

IrfanView CADIMAGE Plugin is a CAD plugin for IrfanView. IrfanView CADImage Plugin had an error loophole in the buffer zone, which stemmed from cross-border access to DWG documents, which could lead to the disclosure of information.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

IrfanView

Published

2025-07-21

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-494/

Patch

https://www.irfanview.com/