Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.4 views

SUSE CVE-2019-11047

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

6.5CVSS9.2AI score0.07473EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2020/12/01 12:5 p.m.3 views

php: Information disclosure in exif_read_data() function

In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while parsing EXIF data with exifreaddata function, it is possible for malicious data to cause PHP to read one byte of uninitialized memory. This could potentially lead to information disclosure or crash...

6.5CVSS7.4AI score0.04295EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.80 views

Amazon Linux AMI : php73 (ALAS-2020-1368)

The version of php73 installed on the remote host is prior to 7.3.17-1.25. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1368 advisory. In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below 7.4.34, while parsing EXIF data with exifreaddata...

8.8CVSS7.3AI score0.04764EPSS
Exploits4References9
OSV
OSV
added 2020/04/01 4:15 a.m.1 views

DEBIAN-CVE-2020-7064

In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while parsing EXIF data with exifreaddata function, it is possible for malicious data to cause PHP to read one byte of uninitialized memory. This could potentially lead to information disclosure or crash...

5.4CVSS6.2AI score0.04295EPSS
Exploits1References1
OSV
OSV
added 2019/06/03 12:0 a.m.5 views

UBUNTU-CVE-2019-11040

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information...

9.1CVSS6.3AI score0.04068EPSS
Exploits1References4
Prion
Prion
added 2012/07/13 10:34 a.m.18 views

Out-of-bounds

The exifdataloaddata function in exif-data.c in the EXIF Tag Parsing Library aka libexif before 0.6.21 allows remote attackers to cause a denial of service out-of-bounds read or possibly obtain sensitive information from process memory via crafted EXIF tags in an image...

6.4CVSS7.4AI score0.06221EPSS
Exploits0References8Affected Software1
securityvulns
securityvulns
added 2007/06/13 12:0 a.m.31 views

libexif library integer overflow

Integer overflow on EXIF data parsing...

9.3CVSS5.6AI score0.13162EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder