Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-34334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop is triggered when...

5.5CVSS6.3AI score0.01104EPSS
Exploits0References2
OSV
OSV
added 2024/02/12 10:17 p.m.16 views

CVE-2024-24826 Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder in Exiv2

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.1. The vulnerable function, QuickTimeVideo::NikonTagsDecoder, was new in v0.28.0, so Exiv2 versions before v0.28 are no...

5.5CVSS5AI score0.0024EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/10 5:52 p.m.45 views

CVE-2021-37621

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to print the metadata of a crafted image file. An attacker...

5.5CVSS4AI score0.01104EPSS
Exploits0References3
CNVD
CNVD
added 2021/04/25 12:0 a.m.9 views

Exiv2 out-of-bounds read vulnerability (CNVD-2021-31911)

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An out-of-bounds read vulnerability exists in Exiv2 0.27.3 and earlier versions. An attacker can exploit this vulnerability to cause Exiv2 to crash via specially crafted image files...

6.5CVSS6.5AI score0.01571EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/11/05 4:49 p.m.31 views

CVE-2018-18915

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

6.5CVSS3.4AI score0.01844EPSS
Exploits1References2
Prion
Prion
added 2018/11/03 4:29 a.m.22 views

Input validation

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

4.3CVSS7AI score0.01844EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2018/06/01 5:7 a.m.15 views

Denial Of Service (DoS) Through Heap Buffer Overflow

libexiv2.so is vulnerable to denial of service DoS through heap-based buffer overflow attacks. The vulnerability exists in basicio.cpp which causes an out-of-bounds write in Exiv2::Image::printIFDStructure and leads to a DoS attack, and possibly other attacks...

6.7AI score
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2017/10/10 11:49 a.m.23 views

CVE-2017-14857

In Exiv2 0.26, there is an invalid free in the Image class in image.cpp that leads to a Segmentation fault. A crafted input will lead to a denial of service attack...

5.5CVSS3.2AI score0.00772EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2017/09/28 7:0 a.m.21 views

CVE-2017-14857

In Exiv2 0.26, there is an invalid free in the Image class in image.cpp that leads to a Segmentation fault. A crafted input will lead to a denial of service attack...

5.5CVSS7.3AI score0.00772EPSS
Exploits1
Debian CVE
Debian CVE
added 2017/08/18 9:0 p.m.26 views

CVE-2017-12955

There is a heap-based buffer overflow in basicio.cpp of Exiv2 0.26. The vulnerability causes an out-of-bounds write in Exiv2::Image::printIFDStructure, which may lead to remote denial of service or possibly unspecified other impact...

8.8CVSS9.2AI score0.01676EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/06/26 11:0 p.m.22 views

CVE-2017-9953

There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault in Exiv2 0.26. A crafted input will lead to a remote denial of service attack...

7.5CVSS8.5AI score0.02808EPSS
Exploits1
Rows per page
Query Builder