Lucene search

K
cve[email protected]CVE-2012-2814
HistoryJul 13, 2012 - 10:34 a.m.

CVE-2012-2814

2012-07-1310:34:59
CWE-119
web.nvd.nist.gov
71
cve-2012-2814
buffer overflow
exif_entry_format_value function
libexif
remote attackers
denial of service
execute arbitrary code
crafted exif tags

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.098 Low

EPSS

Percentile

94.9%

Buffer overflow in the exif_entry_format_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image.

Affected configurations

NVD
Node
libexif_projectlibexifMatch0.6.20

8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.098 Low

EPSS

Percentile

94.9%