Lucene search
K

55 matches found

OSV
OSV
added 2021/08/09 7:15 p.m.0 views

UBUNTU-CVE-2021-37622

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

5.5CVSS6.6AI score0.01109EPSS
Exploits0References5
Prion
Prion
added 2021/08/09 7:15 p.m.22 views

Code injection

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

4.3CVSS5.4AI score0.01109EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2021/08/09 6:15 p.m.2 views

DEBIAN-CVE-2021-37623

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

5.5CVSS6.2AI score0.01051EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/08/09 12:0 a.m.25 views

CVE-2021-37622

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

5.5CVSS6.6AI score0.01109EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/08/09 12:0 a.m.31 views

CVE-2021-37623

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

5.5CVSS5AI score0.01051EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/08/09 12:0 a.m.38 views

CVE-2021-37623

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

5.5CVSS5.6AI score0.01051EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/08/09 12:0 a.m.42 views

CVE-2021-37622

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...

5.5CVSS5.6AI score0.01109EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/07/14 12:0 a.m.2 views

PT-2021-7697 · Exiv2 +6 · Exiv2 +6

Name of the Vulnerable Software and Affected Versions: Exiv2 versions v0.27.4 and earlier Description: The issue is related to an infinite loop in Exiv2 when modifying the metadata of a crafted image file, potentially allowing an attacker to cause a denial of service. This bug is triggered when...

8.1CVSS5.8AI score0.03098EPSS
Exploits22References199
RedHat Linux
RedHat Linux
added 2020/04/28 3:31 p.m.5 views

exiv2: out of bounds read in IptcData::printStructure in iptc.c

An out-of-bounds read vulnerability has been discovered in IptcData::printStructure in iptc.cpp file of Exiv2 0.26. An attacker could cause a crash or an information leak by providing a crafted image...

8.1CVSS5.7AI score0.01992EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2020/04/28 3:31 p.m.6 views

exiv2: out of bounds read in IptcData::printStructure in iptc.c

REJECTED CVE An integer underflow, leading to heap-based out-of-bound read, was found in the way Exiv2 library prints IPTC Photo Metadata embedded in an image. By persuading a victim to open a crafted image, a remote attacker could crash the application or possibly retrieve a portion of memory...

5.8AI score
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/08/06 2:22 p.m.4 views

exiv2: out of bounds read in IptcData::printStructure in iptc.c

An out-of-bounds read vulnerability has been discovered in IptcData::printStructure in iptc.cpp file of Exiv2 0.26. An attacker could cause a crash or an information leak by providing a crafted image...

8.1CVSS5.7AI score0.01992EPSS
Exploits1References4
CNVD
CNVD
added 2018/04/19 12:0 a.m.2 views

Exiv2 IptcData::printStructure Information Disclosure Vulnerability

Exiv2 is a C++ library for extracting EXIF, LPTC and XMP metadata information from images. An information disclosure vulnerability exists in Exiv2 version 0.26 iptc.c/IptcData::printStructure, which can be exploited by an attacker to cause a crash or information disclosure...

8.1CVSS6.4AI score0.01992EPSS
Exploits1References1
CNVD
CNVD
added 2018/03/30 12:0 a.m.0 views

Exiv2 'Exiv2::IptcData::printStructure' function out-of-bounds read vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. An out-of-bounds read vulnerability exists in the...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2018/02/13 12:0 a.m.3 views

Exiv2 'Exiv2::IptcData::printStructure' function out-of-bounds read vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. An out-of-bounds read vulnerability exists in the...

6.5CVSS6.9AI score0.02172EPSS
Exploits1References1
PyPA
PyPA
added 2018/02/12 10:29 p.m.5 views

PYSEC-2018-123

In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file...

6.5CVSS6.8AI score0.02172EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder