CVE-2025-8835 | JasPer up to 4.2.5 Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference (Issue 400)

A vulnerability has been found in JasPer up to 4.2.5 and classified as problematic. Affected by this vulnerability is the function jas_image_chclrspc of the file src/libjasper/base/jas_image.c of the component Image Color Space Conversion Handler. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2025-8835. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-8835 | JasPer up to 4.2.5 Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference (Issue 400)

Post correlati

CVE-2024-28736 | Debezium UI 2.5 Refresh Page Local Privilege Escalation (ID 178794)

CVE-2024-33932 | Vinod Dalvi Login Logout Register Menu Plugin up to 2.0 on WordPress cross site scripting

CVE-2024-35716 | Copymatic Plugin up to 1.9 on WordPress authorization

CVE-2024-33209 | FlatPress 1.3 Add New Entry Section cross site scripting