CNNVD-202507-2724 Information

CNNVD ID

CNNVD-202507-2724

Related CVE

CVE-2025-7234

• CNNVD Published: 2025-07-21

Description (Chinese)

IrfanView CADImage Plugin是IrfanView公司的一个CAD插件。 IrfanView CADImage Plugin存在缓冲区错误漏洞，该漏洞源于解析CGM文件时存在越界写入，可能导致远程代码执行。

Description (English)

IrfanView CADIMAGE Plugin is a CAD plugin for IrfanView. IrfanView CADImage Plugin had an error loophole in the buffer zone, which stemmed from the cross-border writing that could lead to remote code implementation when the CGM file was deciphered.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

IrfanView

Published

2025-07-21

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-495/

Patch

https://www.irfanview.com/