Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-0042

Malware in sbrugna...

6.5CVSS7.3AI score0.02762EPSS
Exploits1References11
BDU FSTEC
BDU FSTEC
added 2023/09/12 12:0 a.m.6 views

The vulnerability of the pngimage.cpp component in the Exiv2 metadata management library, which involves writing beyond buffer boundaries in memory, allows a attacker to cause a service failure.

The vulnerability of the pngimage.cpp component in the Exiv2 media metadata management library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.8CVSS7.4AI score0.00697EPSS
Exploits1References5Affected Software2
PyPA
PyPA
added 2023/08/22 7:15 p.m.10 views

PYSEC-2023-150

Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...

7.8CVSS7AI score0.00697EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2023/08/22 7:15 p.m.15 views

Buffer overflow

Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...

4.4CVSS7.3AI score0.00697EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/08/22 12:0 a.m.51 views

CVE-2020-18831

CVE-2020-18831 affects Exiv2, specifically the buffer overflow in the tEXtToDataBuf function within pngimage.cpp of version 0.27.1. The vulnerability can be triggered by processing crafted image files, leading to a denial of service and other unspecified impacts. The available connected documents...

7.8CVSS7.3AI score0.00697EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2023/08/22 12:0 a.m.20 views

CVE-2020-18831

Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...

7.8CVSS7.4AI score0.00697EPSS
Exploits1
Veracode
Veracode
added 2020/04/29 2:39 a.m.26 views

Denial Of Service (DoS)

exiv2 is vulnerable to denial of service. The vulnerability exists in PngImage::readMetadata function of pngimage.cpp due to negative integer overflow which allows an attacker to crash the application via malicious input...

6.5CVSS7.2AI score0.01579EPSS
Exploits1References9Affected Software5
RedHat Linux
RedHat Linux
added 2020/04/28 3:31 p.m.5 views

exiv2: OOB read in pngimage.cpp:tEXtToDataBuf() allows for crash via crafted file

The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...

6.5CVSS6AI score0.01608EPSS
Exploits1References4
Veracode
Veracode
added 2019/11/07 2:23 a.m.22 views

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service DoS. An attacker can input a malicious PNG file to PngImage::readMetadata in pngimage.cpp to cause a heap-based buffer overflow which results in a denial of service condition...

6.5CVSS4AI score0.01116EPSS
Exploits1References4Affected Software2
RedhatCVE
RedhatCVE
added 2018/12/18 10:22 a.m.27 views

CVE-2018-20096

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS4.2AI score0.02762EPSS
Exploits1References2
Prion
Prion
added 2018/12/12 10:29 a.m.26 views

Heap overflow

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

4.3CVSS7.1AI score0.02762EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2018/12/12 10:29 a.m.20 views

CVE-2018-20096

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.5AI score0.02762EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2018/12/12 10:29 a.m.31 views

CVE-2018-20096

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.9AI score0.02762EPSS
Exploits1References2
OSV
OSV
added 2018/12/12 10:29 a.m.21 views

CVE-2018-20096

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.4AI score
Exploits0References4
OSV
OSV
added 2018/12/12 10:29 a.m.24 views

PYSEC-2018-117

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.4AI score0.02762EPSS
Exploits1References4
CVE
CVE
added 2018/12/12 8:0 a.m.117 views

CVE-2018-20096

CVE-2018-20096 describes a heap-based buffer over-read in Exiv2’s pngimage.cpp:Exiv2::tEXtToDataBuf() within version 0.27-RC3. A crafted input can cause a remote denial of service. The connected Nessus advisories enumerate Exiv2-related issues and explicitly list this CVE among many, reinforcing ...

6.5CVSS6.4AI score0.02762EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2018/06/25 4:20 a.m.38 views

CVE-2018-10772

The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...

6.5CVSS6.7AI score0.01608EPSS
Exploits1References1
Veracode
Veracode
added 2018/05/07 7:39 a.m.29 views

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service DoS attacks. A malicious user can crash the applicaiton by passing a file to the tEXtToDataBuf function in pngimage.cpp...

6.5CVSS6.9AI score0.01608EPSS
Exploits1References3Affected Software5
UbuntuCve
UbuntuCve
added 2018/05/07 2:29 a.m.32 views

CVE-2018-10772

The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...

6.5CVSS6.8AI score0.01608EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/05/07 2:0 a.m.26 views

CVE-2018-10772

The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...

7AI score0.01608EPSS
Exploits1References2
Rows per page
Query Builder