Lucene search
+L

12 matches found

nessus
nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-34334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop is triggered when...

5.5CVSS6.3AI score0.01104EPSS
Exploits0References2
nessus
nessus
added 2022/11/08 12:0 a.m.30 views

SUSE SLED15: exiv2 / exiv2-lang / libexiv2-26 / libexiv2-26-32bit / etc (SUSE-SU-2022:3892-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3892-1 advisory. - CVE-2019-13111: Fixed nteger overflow in WebPImage:decodeChunks bsc1142679. - CVE-2021-29463:...

5.5CVSS6.9AI score0.01119EPSS
Exploits1References10
openvas
openvas
added 2022/11/08 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2022:3889-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.02152EPSS
Exploits3References2
openvas
openvas
added 2022/11/08 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:3892-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.8AI score0.01119EPSS
Exploits1References2
cbl_mariner
cbl_mariner
added 2022/06/25 8:53 p.m.33 views

CVE-2021-34334 affecting package exiv2 for versions less than 0.27.5-1

CVE-2021-34334 affecting package exiv2 for versions less than 0.27.5-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.9AI score0.01104EPSS
Exploits0
openvas
openvas
added 2021/11/03 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2021-2628)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.2AI score0.01848EPSS
Exploits1References2
nessus
nessus
added 2021/11/02 12:0 a.m.35 views

EulerOS 2.0 SP8 : exiv2 (EulerOS-SA-2021-2628)

According to the versions of the exiv2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmnint.cpp which can result in an informati...

8.1CVSS6.4AI score0.01848EPSS
Exploits1References12
mageia
mageia
added 2021/09/04 5:1 p.m.43 views

Updated exiv2 packages fix security vulnerabilities

The updated exiv2 packages fix security vulnerabilities: An assertion failure is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a...

5.5CVSS3.3AI score0.01109EPSS
Exploits0References3
openvas
openvas
added 2021/08/20 12:0 a.m.25 views

Fedora: Security Advisory for mingw-exiv2 (FEDORA-2021-cbaef8e2d5)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.9AI score0.02555EPSS
Exploits1References2
osv
osv
added 2021/08/09 6:15 p.m.24 views

CVE-2021-34334

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of...

5.5CVSS6.4AI score
Exploits0References6
cvelist
cvelist
added 2021/08/09 12:0 a.m.28 views

CVE-2021-34334 Denial of service due to integer overflow in loop counter

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of...

5.5CVSS6.3AI score0.01104EPSS
Exploits0References6
cve
cve
added 2021/08/09 12:0 a.m.163 views

CVE-2021-34334

CVE-2021-34334 affects Exiv2 (image metadata tool/library). A crafted image file can trigger an infinite loop when reading metadata, potentially causing a denial of service if a user runs Exiv2 on the crafted file. Public reports across multiple vendors/sources confirm the issue and indicate the ...

5.5CVSS5.8AI score0.01104EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder