Lucene search

CVE-2024-39695

🗓️ 08 Jul 2024 16:08:15Reported by GitHub_MType

Exiv2 v0.28.2 ASF video format out-of-bounds read vulnerability fixed in v0.28.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 14
UbuntuCve	CVE-2024-39695	8 Jul 202400:00	–	ubuntucve
RedhatCVE	CVE-2024-39695	17 Oct 202419:38	–	redhatcve
CBLMariner	CVE-2024-39695 affecting package exiv2 for versions less than 0.28.3-1	13 Mar 202515:08	–	cbl_mariner
Vulnrichment	CVE-2024-39695 Exiv2 has an out-of-bounds read in AsfVideo::streamProperties	8 Jul 202415:14	–	vulnrichment
Tenable Nessus	FreeBSD : exiv2 -- Out-of-bounds read in AsfVideo::streamProperties (3e44c35f-6cf4-11ef-b813-4ccc6adda413)	8 Sep 202400:00	–	nessus
Tenable Nessus	libexiv2 0.28.x < 0.28.3 (GHSA-38rv-8x93-pvrh)	31 Jul 202400:00	–	nessus
Tenable Nessus	Exiv2 0.28.x < 0.28.3 (GHSA-38rv-8x93-pvrh)	31 Jul 202400:00	–	nessus
OSV	OPENSUSE-SU-2024:14184-1 exiv2-0.28.3-1.1 on GA media	14 Jul 202400:00	–	osv
OSV	CVE-2024-39695	8 Jul 202416:15	–	osv
Cvelist	CVE-2024-39695 Exiv2 has an out-of-bounds read in AsfVideo::streamProperties	8 Jul 202415:14	–	cvelist

Nvd

Vulners

Vulnrichment

Node

exiv2 exiv2Range0.28.0–0.28.3

[
  {
    "vendor": "Exiv2",
    "product": "exiv2",
    "versions": [
      {
        "version": ">= 0.28.0, < 0.28.3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/Exiv2/exiv2/security/advisories/GHSA-38rv-8x93-pvrh
github	www.github.com/Exiv2/exiv2/pull/3006
github	www.github.com/Exiv2/exiv2/commit/3a28346db5ae1735a8728fe3491b0aecc1dbf387

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Jul 2024 16:15Current

5.4Medium risk

Vulners AI Score5.4

CVSS35.3 - 6.5

EPSS0.00387

SSVC

CWE-125