Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: exiv2 (CVE-2024-25112)

The version of exiv2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25112 advisory. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of...

5.5CVSS5.5AI score0.00222EPSS
Exploits0References2
OSV
OSV
added 2024/07/08 4:15 p.m.5 views

AZL-43224 CVE-2024-39695 affecting package exiv2 for versions less than 0.28.3-1

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.2. The vulnerability is in the parser for the ASF video format, which was a new feature in v0.28.0. The out-of-bounds...

6.5CVSS5.7AI score0.00561EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/02/14 3:56 a.m.3 views

SUSE CVE-2024-25112

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A denial-of-service was found in Exiv2 version v0.28.1: an unbounded recursion can cause Exiv2 to crash by exhausting the stack. The vulnerable function,...

5.5CVSS6.5AI score0.00222EPSS
Exploits0References4
OSV
OSV
added 2024/02/12 11:15 p.m.9 views

AZL-42555 CVE-2024-24826 affecting package exiv2 for versions less than 0.28.3-1

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.1. The vulnerable function, QuickTimeVideo::NikonTagsDecoder, was new in v0.28.0, so Exiv2 versions before v0.28 are no...

5CVSS6AI score0.0024EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/12/29 12:0 a.m.7 views

The vulnerability of Firefox and Firefox ESR browsers allows a perpetrator to trigger a service failure or execute arbitrary code.

The vulnerability of the Metadata::setData function found in MetaData.cpp in libstagefright in Firefox and Firefox ESR browsers arises due to a loss of precision for integer operations. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure using an...

6.8CVSS7.6AI score0.04269EPSS
Exploits0References3Affected Software2
CNVD
CNVD
added 2015/12/18 12:0 a.m.3 views

Mozilla Firefox Denial of Service Vulnerability (CNVD-2015-08324)

Mozilla Firefox and Firefox ESR are both browser products developed by the Mozilla Foundation in the U.S. Firefox is an open-source web browser; Firefox ESR is an extended-support version of Firefox. libstagefright is one of the hard-coding support libraries. The 'Metadata::setData' function in t...

6.8CVSS9.3AI score0.04269EPSS
Exploits0References1
Rows per page
Query Builder