CVE-2020-23546
IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted XBM file, related to a "Dat
CVSS
7.8
High
EPSS
0.9%
p56
KEV
—
Exploit Today
17
0-100
Published: Oct 28, 2021 · Last modified: Jul 9, 2026
0.9%EPSS · 30 days1.0%
2026-06-302026-07-16
IrfanView 4.54 allows attackers to cause a denial of service or possibly other unspecified impacts via a crafted XBM file, related to a "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at FORMATS!ReadMosaic+0x0000000000000981.
No related CVEs by CWE or product.