{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30007", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-23T17:09:36.890Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-03-23T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-23T16:37:17.573Z"}, "descriptions": [{"lang": "en", "value": "XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file"}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.xnview.com/en/nconvert/"}, {"url": "https://github.com/PassMoon/Nconvert_Vul_7.230"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-416", "lang": "en", "description": "CWE-416 Use After Free"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-23T17:09:14.227569Z", "id": "CVE-2026-30007", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-23T17:09:36.890Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.2, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-30007", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-23T17:09:14.227569Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-416", "description": "CWE-416 Use After Free"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-23T17:09:29.681Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://www.xnview.com/en/nconvert/"}, {"url": "https://github.com/PassMoon/Nconvert_Vul_7.230"}], "descriptions": [{"lang": "en", "value": "XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-23T16:37:17.573Z"}}}, "cveMetadata": {"cveId": "CVE-2026-30007", "state": "PUBLISHED", "dateUpdated": "2026-03-23T17:09:36.890Z", "dateReserved": "2026-03-04T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-23T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:xnview:nconvert:7.230:*:*:*:*:*:*:*", "matchCriteriaId": "30064642-A265-4EC4-A5A1-C4A099E7FF26", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file"}, {"lang": "es", "value": "XnSoft NConvert 7.230 es vulnerable a uso despu\u00e9s de liberaci\u00f3n a trav\u00e9s de un archivo .tiff manipulado."}], "id": "CVE-2026-30007", "lastModified": "2026-03-26T15:30:13.473", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-23T17:16:49.083", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/PassMoon/Nconvert_Vul_7.230"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://www.xnview.com/en/nconvert/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-416"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "7.230"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "nconvert", "vendor": "xnsoft"}], "analysis": {"en": {"generated_at": "2026-03-26T17:01:13.759158+00:00", "value": {"mitigation_remediation": ["Update NConvert to the latest version released by XnSoft (any version after 7.230).", "Avoid opening or converting unknown or untrusted TIFF files with the vulnerable version.", "Verify the integrity of the NConvert installer and binaries by checking digital signatures or using official download sources."], "summary": {"action": "Patch", "impact": "Memory corruption, potential arbitrary code execution"}, "threat_synthesis": {"affected_systems": "The affected software is XnSoft's NConvert application, version 7.230. This version is distributed and documented on the official XnView website. No other versions or products are listed as affected in the provided data.", "description_and_impact": "The vulnerability is a use\u2011after\u2011free condition in XnSoft NConvert 7.230 that is triggered when the program processes a specially crafted TIFF file. The flaw occurs after the program frees memory that it later dereferences, which can lead to memory corruption and potentially arbitrary code execution if an attacker can supply the crafted file. This is a classic example of CWE\u2011416 and represents a medium severity risk to confidentiality, integrity, and availability of affected systems.", "risk_and_exploitability": "The CVSS score for this flaw is 6.2, indicating medium risk, while the EPSS score is below 1%, suggesting a low probability of widespread exploitation. The flaw is not listed in CISA\u2019s KEV catalog. Because the trigger requires a crafted .tiff file, the likely attack vector is local or remote file processing, such as via an application that accepts user\u2011supplied TIFF files. No additional prerequisites are recorded, so an attacker needs access to a system running NConvert 7.230 to load a malicious file."}}}}, "created": "2026-03-24T10:35:00.461811+00:00", "updated": "2026-03-27T09:21:25.037571+00:00", "vendors": ["xnsoft", "xnsoft$PRODUCT$nconvert"]}