Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2680 matches found

UbuntuCve
UbuntuCveadded 2021/04/30 7:15 p.m.24 views

CVE-2021-29463

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

5.5CVSS6.6AI score0.01119EPSS
Exploits0References3
Cvelist
Cvelistadded 2021/04/30 12:0 a.m.28 views

CVE-2021-29464 Heap buffer overflow in Exiv2::Jp2Image::encodeJp2Header

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

3.3CVSS8.1AI score0.01499EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2021/04/30 12:0 a.m.35 views

EulerOS 2.0 SP3 : exiv2 (EulerOS-SA-2021-1782)

According to the versions of the exiv2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp.CVE-2018-11531 - Exiv2 0.27.2 allows attackers to trigger a crash in...

9.8CVSS6.8AI score0.0296EPSS
Exploits2References4
OSV
OSVadded 2021/04/29 5:15 p.m.2 views

CVE-2021-31436

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.931. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.2AI score0.02761EPSS
Exploits0References2
Veracode
Veracodeadded 2021/04/29 11:59 a.m.23 views

Decoder Error

VideoLAN VLC media player is vulnerable to logical error. it allows an attacker to cause a denial of service memory corruption through a crafted image file...

7.8CVSS6.5AI score0.02021EPSS
Exploits1References8Affected Software1
OSV
OSVadded 2021/04/26 7:15 p.m.19 views

CVE-2021-29473

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the...

2.5CVSS6.3AI score
Exploits0References10
FreeBSD
FreeBSDadded 2021/04/25 12:0 a.m.44 views

Exiv2 -- Multiple vulnerabilities

Exiv2 teams reports: Multiple vulnerabilities covering buffer overflows, out-of-bounds, read of uninitialized memory and denial of serivce. The heap overflow is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to ga...

7.8CVSS2.3AI score0.02295EPSS
Exploits2References9
NVD
NVDadded 2021/04/23 7:15 p.m.16 views

CVE-2021-29470

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

6.5CVSS0.01571EPSS
Exploits0References7
OSV
OSVadded 2021/04/23 6:15 p.m.0 views

UBUNTU-CVE-2021-22205

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution...

10CVSS7.3AI score0.99731EPSS
Exploits30References6
Vulnrichment
Vulnrichmentadded 2021/04/23 5:39 p.m.5 views

CVE-2021-22205

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution...

10CVSS9.8AI score0.99731EPSS
Exploits30References5
Positive Technologies
Positive Technologiesadded 2021/04/23 12:0 a.m.5 views

PT-2021-4979

Name of the Vulnerable Software and Affected Versions GitLab versions 11.9 through 13.10.2 GitLab CE/EE versions prior to 14.0 Description The issue is related to insufficient input validation in GitLab when parsing image files, allowing remote command execution. This has been exploited in...

10CVSS9.9AI score0.99731EPSS
Exploits30References91
Cvelist
Cvelistadded 2021/04/23 12:0 a.m.19 views

CVE-2021-29470 Out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

4.7CVSS6.7AI score0.01571EPSS
Exploits0References7
AlpineLinux
AlpineLinuxadded 2021/04/23 12:0 a.m.43 views

CVE-2021-29470

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

6.5CVSS5.8AI score0.01571EPSS
Exploits0
NVD
NVDadded 2021/04/19 7:15 p.m.13 views

CVE-2021-29457

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

7.8CVSS0.02152EPSS
Exploits1References8
UbuntuCve
UbuntuCveadded 2021/04/19 7:15 p.m.24 views

CVE-2021-29458

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

5.5CVSS6.7AI score0.01568EPSS
Exploits1References5
Prion
Prionadded 2021/04/19 7:15 p.m.29 views

Heap overflow

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

6.8CVSS7.6AI score0.02152EPSS
Exploits1References8Affected Software3
Cvelist
Cvelistadded 2021/04/19 12:0 a.m.19 views

CVE-2021-29457 Heap buffer overflow in Exiv2::Jp2Image::doWriteMetadata

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

8.1AI score0.02152EPSS
Exploits1References8
Debian CVE
Debian CVEadded 2021/04/19 12:0 a.m.31 views

CVE-2021-29457

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

7.8CVSS6.6AI score0.02152EPSS
Exploits1
AlpineLinux
AlpineLinuxadded 2021/04/19 12:0 a.m.39 views

CVE-2021-29458

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

5.5CVSS6.2AI score0.01568EPSS
Exploits1
CNNVD
CNNVDadded 2021/04/13 12:0 a.m.1 views

Pillow 资源管理错误漏洞

Pillow is a Python-based image processing library. A denial of service vulnerability exists in versions of Pillow prior to 8.2.0, which stems from the fact that PSDImagePlugin.PsdImageFile does not properly check the number of input layers based on data block size, and can be exploited by attacke...

5.5CVSS5.7AI score0.00964EPSS
Exploits0References10
Rows per page
Query Builder