Lucene search
K

169 matches found

UbuntuCve
UbuntuCve
added 2017/11/01 3:29 p.m.34 views

CVE-2017-16353

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

6.5CVSS6.9AI score0.13679EPSS
Exploits3References4
NVD
NVD
added 2017/11/01 3:29 p.m.24 views

CVE-2017-16353

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

6.5CVSS7.2AI score0.13679EPSS
Exploits3References9
Prion
Prion
added 2017/11/01 3:29 p.m.21 views

Heap overflow

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

4.3CVSS7.1AI score0.13679EPSS
Exploits3References9Affected Software2
AlpineLinux
AlpineLinux
added 2017/11/01 3:0 p.m.48 views

CVE-2017-16353

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

6.5CVSS7.8AI score0.13679EPSS
Exploits3
Cvelist
Cvelist
added 2017/11/01 3:0 p.m.22 views

CVE-2017-16353

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

7.2AI score0.13679EPSS
Exploits3References9
Debian CVE
Debian CVE
added 2017/11/01 3:0 p.m.30 views

CVE-2017-16353

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

6.5CVSS7.9AI score0.13679EPSS
Exploits3
n0where
n0where
added 2017/01/06 5:36 a.m.24 views

Platform Independent Meta Information Editor: ExifTool

Platform Independent Meta Information Editor ExifTool is a platform-independent Perl library plus a command-line application for reading, writing and editing meta information in a wide variety of files. ExifTool supports many different metadata formats including EXIF, GPS, IPTC, XMP, JFIF, GeoTIF...

Exploits0
Fedora
Fedora
added 2016/03/03 8:28 p.m.16 views

[SECURITY] Fedora 23 Update: exiv2-0.25-3.fc23

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted value s, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

1.6AI score
Exploits0
Fedora
Fedora
added 2015/01/21 10:59 p.m.40 views

[SECURITY] Fedora 21 Update: exiv2-0.24-4.fc21

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted value s, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

5CVSS6.6AI score0.03654EPSS
Exploits0
Fedora
Fedora
added 2014/09/27 9:47 a.m.20 views

[SECURITY] Fedora 20 Update: libkexiv2-4.14.1-2.fc20

Libkexiv2 is a wrapper around Exiv2 library to manipulate pictures metadata as EXIF/IPTC and XMP...

6.9CVSS1.9AI score0.00359EPSS
Exploits1
NVD
NVD
added 2014/08/14 5:1 a.m.11 views

CVE-2014-1980

Cross-site scripting XSS vulnerability in include/functionsmetadata.inc.php in Piwigo before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the Make field in IPTC Exif metadata within an image uploaded to the Community plugin...

4.3CVSS5.7AI score0.01187EPSS
Exploits0References3
Prion
Prion
added 2014/08/14 5:1 a.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in include/functionsmetadata.inc.php in Piwigo before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the Make field in IPTC Exif metadata within an image uploaded to the Community plugin...

4.3CVSS6.1AI score0.01187EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/08/14 1:0 a.m.22 views

CVE-2014-1980

Cross-site scripting XSS vulnerability in include/functionsmetadata.inc.php in Piwigo before 2.4.6 allows remote attackers to inject arbitrary web script or HTML via the Make field in IPTC Exif metadata within an image uploaded to the Community plugin...

5.7AI score0.01187EPSS
Exploits0References3
CVE
CVE
added 2014/08/14 1:0 a.m.52 views

CVE-2014-1980

The CVE-2014-1980 issue is a cross-site scripting (XSS) vulnerability in Piwigo prior to version 2.4.6. It affects the code path include/functions_metadata.inc.php when processing IPTC Exif metadata via the Community plugin during image uploads. Remote attackers could inject arbitrary web script ...

4.3CVSS5.9AI score0.01187EPSS
Exploits0References3Affected Software1
PyPA
PyPA
added 2014/04/17 2:55 p.m.10 views

PYSEC-2014-22

The 1 loaddjpeg function in JpegImagePlugin.py, 2 Ghostscript function in EpsImagePlugin.py, 3 load function in IptcImagePlugin.py, and 4 copy function in Image.py in Python Image Library PIL 1.1.7 and earlier and Pillow before 2.3.1 do not properly create temporary files, which allow local users...

4.4CVSS6.4AI score0.00492EPSS
Exploits1References8Affected Software1
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.18 views

Fedora Update for libkexiv2 FEDORA-2013-13499

Check for the Version of libkexiv2 OpenVAS Vulnerability Test Fedora Update for libkexiv2 FEDORA-2013-13499 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.5CVSS8.1AI score0.04412EPSS
Exploits1References2
Fedora
Fedora
added 2013/06/12 2:34 a.m.27 views

[SECURITY] Fedora 18 Update: libkexiv2-4.10.4-1.fc18

Libkexiv2 is a wrapper around Exiv2 library to manipulate pictures metadata as EXIF/IPTC and XMP...

8.4CVSS1.9AI score0.00558EPSS
Exploits1
Fedora
Fedora
added 2011/10/04 9:23 p.m.33 views

[SECURITY] Fedora 16 Update: libkexiv2-4.7.1-1.fc16

Libkexiv2 is a wrapper around Exiv2 library to manipulate pictures metadata as EXIF/IPTC and XMP...

4.3CVSS1.9AI score0.01134EPSS
Exploits0
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.21 views

Fedora Update for exiv2 FEDORA-2007-4551

Check for the Version of exiv2 OpenVAS Vulnerability Test Fedora Update for exiv2 FEDORA-2007-4551 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

7.5CVSS7.5AI score0.04871EPSS
Exploits0References2
OSV
OSV
added 2008/01/21 12:0 a.m.13 views

DSA-1474-1 exiv2 - arbitrary code execution

Bulletin has no description...

7.5CVSS6.3AI score0.04871EPSS
Exploits0
Rows per page
Query Builder