Lucene search
K

52 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in gst-plugins-base1.0

GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may va...

7.8CVSS7.8AI score0.01565EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-0979

Malware in sbrugna...

10CVSS6AI score0.05843EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-1662

Malware in sbrugna...

10CVSS9.5AI score0.0123EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-7148

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01515EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-5809

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the LibRaw::parseexif function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overfl...

8.8CVSS7.8AI score0.02786EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/11/11 9:7 a.m.5 views

gstreamer: EXIF Metadata Parsing Integer Overflow

A flaw was found in the GStreamer library. This flaw allows a remote attacker to send specially crafted content to the victim, allowing for arbitrary code execution within the context of the affected installation's process. The vulnerability is caused by improper parsing of EXIF metadata and a la...

7.8CVSS6.4AI score0.01565EPSS
Exploits0References4
OSV
OSV
added 2024/05/22 8:15 p.m.7 views

AZL-45048 CVE-2024-4453 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.7AI score0.01565EPSS
Exploits0References1
OSV
OSV
added 2024/05/22 8:15 p.m.5 views

AZL-43432 CVE-2024-4453 affecting package gstreamer1-plugins-base 1.20.0-3

GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS7.7AI score0.01565EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 6:20 a.m.4 views

SUSE CVE-2004-0981

Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file...

10CVSS8.1AI score0.05843EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.6 views

SUSE CVE-2018-5809

An error within the "LibRaw::parseexif" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code...

8.8CVSS7.8AI score0.02786EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.3 views

SUSE CVE-2019-11042

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.1.x below 7.1.31, 7.2.x below 7.2.21 and 7.3.x below 7.3.8 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information...

5.4CVSS9.2AI score0.0442EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-7-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.6AI score0.05843EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/07/30 12:0 a.m.6 views

The vulnerability of EXIF_IFD-interoperability and EXIF_IFD-EXIF libraries for grammatical analysis of EXIF files in libexif, related to uncontrolled resource consumption, allows attackers to cause service failures. [source-iocs-preserved const=EXIF_IFD_EXIF,EXIF_IFD_INTEROPERABILITY]

The vulnerability of EXIFIFD-interoperability and EXIFIFD-EXIF libraries for grammatical analysis of EXIF files related to libexif involves an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures. source-iocs-preserved...

7.8CVSS6.5AI score0.03798EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.5 views

The vulnerability of the library for EXIF file grammar analysis in libexif, which arises from reading beyond the permissible buffer limit, allows an intruder to access confidential data and also causes service failure.

The vulnerability of the library for EXIF file parsing in libexif is related to reading data beyond the permissible buffer limits. Exploiting this vulnerability could allow an attacker to access confidential data, as well as cause service failures...

9.1CVSS7.3AI score0.02684EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.5 views

The vulnerability of the library for EXIF file grammar analysis in libexif, due to the lack of checks for division by zero, allows a perpetrator to cause a service failure.

The vulnerability of the library for EXIF file parsing in libexif is related to the lack of checks for division by zero. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00531EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/20 12:0 a.m.7 views

The vulnerability of the library for EXIF file grammar analysis in libexif, related to uncontrolled resource consumption, allows a violator to cause a service failure.

The vulnerability of the library for EXIF file parsing in libexif is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.5CVSS7.1AI score0.02301EPSS
Exploits0References9Affected Software3
CVE
CVE
added 2021/01/06 1:15 a.m.92 views

CVE-2021-21235

Summary (CVE-2021-21235): kamadak-exif (Rust) v0.5.2 contains an infinite loop in PNG parsing via reader::read_from_container when given crafted PNG files. The issue is fixed in v0.5.3; upgrade to 0.5.3 to mitigate. Applications that do not pass PNG-signature files to Reader::read_from_container ...

6.5CVSS5.6AI score0.01515EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2020/09/08 10:6 a.m.3 views

php: Out of bounds read when parsing EXIF information

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

6.5CVSS7.4AI score0.07624EPSS
Exploits1References4
Veracode
Veracode
added 2020/08/06 9:35 p.m.41 views

Information Disclosure

php7 is vulnerable to information disclosure. The vulnerability exists while parsing EXIF data with exifreaddata function, it is possible for malicious data to cause PHP to read one byte of uninitialized memory...

6.5CVSS3.2AI score0.04295EPSS
Exploits1References10Affected Software2
CNVD
CNVD
added 2020/06/29 12:0 a.m.4 views

LibRaw Buffer Overflow Vulnerability (CNVD-2020-51757)

LibRaw is a C++ library from the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images. A buffer overflow vulnerability exists in the 'parseexif' function of the metadataexifgps.cpp file in versions prior to LibRaw 0.20-Beta3. The vulnerability stems from a network system...

6.5CVSS7.3AI score0.01326EPSS
Exploits1References1
Rows per page
Query Builder