Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 4:39 a.m.1 views

SUSE CVE-2017-14860

There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack...

5.5CVSS8.8AI score0.00298EPSS
Exploits1References7
Microsoft CVE
Microsoft CVEadded 2022/01/19 8:0 a.m.2 views

Heap buffer overflow in Exiv2::Jp2Image::doWriteMetadata

...

7.8CVSS6.5AI score0.01509EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2021/07/14 12:0 a.m.1 views

PT-2021-7699 · Exiv2 +6 · Exiv2 +6

Name of the Vulnerable Software and Affected Versions: Exiv2 versions v0.27.4 and earlier Description: The issue is related to an infinite loop in the Exiv2 library, which can be triggered when printing the metadata of a specially crafted image file, potentially allowing a remote attacker to caus...

8.1CVSS6AI score0.02568EPSS
Exploits28References241
OSV
OSVadded 2021/05/13 5:15 p.m.0 views

AZL-7212 CVE-2021-29623 affecting package exiv2 for versions less than 0.27.5-1

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A read of uninitialized memory was found in Exiv2 versions v0.27.3 and earlier. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying...

3.3CVSS6.5AI score0.00307EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2019/06/30 12:0 a.m.2 views

PT-2019-5329 · Exiv2 +8 · Exiv2 +8

Name of the Vulnerable Software and Affected Versions: Exiv2 versions prior to 0.27.2 Description: The issue is related to an uncontrolled memory allocation in the PngChunk::parseChunkContent function of the Exiv2 library, which can be exploited by an attacker to cause a denial of service via a...

9.8CVSS6.7AI score0.03067EPSS
Exploits65References347
OSV
OSVadded 2019/02/25 3:29 p.m.2 views

DEBIAN-CVE-2019-9143

An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::printTiffStructure in the file image.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

8.8CVSS9.5AI score0.0045EPSS
Exploits1References1
CNVD
CNVDadded 2018/04/19 12:0 a.m.2 views

Exiv2 BigTiffImage::printIFD single-byte overflow vulnerability

Exiv2 is a C++ class library for extracting EXIF, LPTC and XMP metadata information from images. A single-byte overflow security vulnerability exists in Exiv2 version 0.26 bigtiffimage.cpp/BigTiffImage::printIFD, which can be exploited by an attacker to cause a denial of service...

6.5CVSS6.9AI score0.00455EPSS
Exploits1References1
PyPA
PyPAadded 2017/11/17 10:29 p.m.3 views

PYSEC-2017-116

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS7.5AI score0.00357EPSS
Exploits0References3Affected Software1
PyPA
PyPAadded 2015/01/02 8:59 p.m.5 views

PYSEC-2015-36

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service crash via a long IKEY INFO tag value in an AVI file...

5CVSS7.1AI score0.01256EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder