Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-61796
HistoryAug 10, 2021 - 12:00 a.m.

Exiv2 Infinite Loop Vulnerability (CNVD-2021-61796)

2021-08-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
exiv2
infinite loop
vulnerability
denial of service
image files
exploit

EPSS

0.001

Percentile

44.7%

Exiv2 is a cross-platform C library and command-line utility for managing image metadata. exiv2 0.27.4 and earlier versions are vulnerable to an infinite loop. An attacker could exploit this vulnerability to cause a denial of service via specially crafted image files.