Known Vulnerabilities for products from Gimp
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Gimp".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40919 json | Not Provided | 2026-04-15 | 2026-04-15 | |
| CVE-2026-40918 json | Not Provided | 2026-04-15 | 2026-04-16 | |
| CVE-2026-40917 json | Not Provided | 2026-04-15 | 2026-04-15 | |
| CVE-2026-40916 json | Not Provided | 2026-04-15 | 2026-04-15 | |
| CVE-2026-40915 json | Not Provided | 2026-04-15 | 2026-04-15 | |
| CVE-2026-6384 json | Not Provided | 2026-04-15 | 2026-04-16 | |
| CVE-2026-4887 json | A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an off-by-one error. A remote ... | Not Provided | 2026-03-26 | 2026-04-20 |
| CVE-2026-4154 json | GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to exe... | Not Provided | 2026-04-11 | 2026-04-14 |
| CVE-2026-4153 json | GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attack... | Not Provided | 2026-04-11 | 2026-04-14 |
| CVE-2026-4152 json | GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attack... | Not Provided | 2026-04-11 | 2026-04-14 |
| CVE-2026-4151 json | GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to exe... | Not Provided | 2026-04-11 | 2026-04-14 |
| CVE-2026-4150 json | GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to exe... | Not Provided | 2026-04-11 | 2026-04-14 |
| CVE-2026-2272 json | A flaw was found in GIMP. An integer overflow vulnerability exists when processing ICO image files, specifically in the `ico_... | Not Provided | 2026-03-26 | 2026-04-03 |
| CVE-2026-2271 json | A flaw was found in GIMP's PSP (Paint Shop Pro) file parser. A remote attacker could exploit an integer overflow vulnerabilit... | Not Provided | 2026-03-26 | 2026-04-21 |
| CVE-2026-2239 json | A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a spe... | Not Provided | 2026-03-26 | 2026-04-03 |
| CVE-2022-32990 json | An issue in gimp_layer_invalidate_boundary of GNOME GIMP 2.10.30 allows attackers to trigger an unhandled exception via a cra... | 5.5 - MEDIUM | 2022-06-24 | 2022-07-01 |
| CVE-2022-30067 json | GIMP 2.10.30 and 2.99.10 are vulnerable to Buffer Overflow. Through a crafted XCF file, the program will allocate for a huge ... | 5.5 - MEDIUM | 2022-05-17 | 2023-11-21 |
| CVE-2021-45463 json | load_cache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filte... | 7.8 - HIGH | 2021-12-23 | 2023-11-07 |
| CVE-2018-12713 json | GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already e... | 9.1 - CRITICAL | 2018-06-24 | 2022-02-07 |
| CVE-2017-17789 json | In GIMP 2.8.22, there is a heap-based buffer overflow in read_channel_data in plug-ins/common/file-psp.c. | 7.8 - HIGH | 2017-12-20 | 2022-02-07 |
Known software with vulnerabilities from Gimp
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Gimp | Gimp | - |