CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2025/10/28 12:0 a.m.•1 views

Fedora: Security Advisory (FEDORA-2025-7575224d15)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.8AI score0.01101EPSS

Exploits1References4

OpenVAS•added 2025/10/28 12:0 a.m.•1 views

Fedora: Security Advisory (FEDORA-2025-c23727e694)

5.5CVSS6.8AI score0.00024EPSS

Exploits1References6

OpenVAS•added 2025/09/04 12:0 a.m.•2 views

Fedora: Security Advisory (FEDORA-2025-e1ae3d4ed9)

5.5CVSS6.5AI score0.00024EPSS

OpenVAS•added 2025/09/01 12:0 a.m.•5 views

Fedora: Security Advisory (FEDORA-2025-387e64c9fd)

5.5CVSS6.8AI score0.00024EPSS

Tenable Nessus•added 2025/06/05 12:0 a.m.•8 views

RHEL 10 : exiv2 (RHSA-2025:7457)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:7457 advisory. Exiv2 is a C++ library to access image metadata, supporting read and write access to the Exif, IPTC and XMP metadata, Exif MakerNote support, extrac...

9.8CVSS6.5AI score0.01101EPSS

CBLMariner•added 2025/05/15 9:13 p.m.•7 views

CVE-2024-39695 affecting package exiv2 for versions less than 0.28.3-1

CVE-2024-39695 affecting package exiv2 for versions less than 0.28.3-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS6.9AI score0.00144EPSS

Exploits0

CBLMariner•added 2025/05/15 9:13 p.m.•5 views

CVE-2023-44398 affecting package exiv2 for versions less than 0.28.3-1

CVE-2023-44398 affecting package exiv2 for versions less than 0.28.3-1. An upgraded version of the package is available that resolves this issue...

8.8CVSS6.9AI score0.00645EPSS

Exploits0

Tenable Nessus•added 2025/05/14 12:0 a.m.•8 views

Alibaba Cloud Linux 3 : 0195: compat-exiv2-026 (ALINUX3-SA-2022:0195)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0195 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-18898: A stack exhaustion issue in the...

6.5CVSS6.8AI score0.00192EPSS

Tenable Nessus•added 2025/03/05 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2021-37621

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2...

5.5CVSS6.2AI score0.00086EPSS

Exploits0References2

5.5CVSS6.3AI score0.00116EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-14862

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and...

5.5CVSS7.5AI score0.00357EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-1000127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 0.26 contains a heap buffer overflow in tiff parser CVE-2017-1000127 Note that Nessus relies on the presence of the package as reported by the vendor...

Exploits0References2

6.5CVSS6.7AI score0.01233EPSS

Linux Distros Unpatched Vulnerability : CVE-2018-20096

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of...

8.8CVSS6.4AI score0.00734EPSS

Linux Distros Unpatched Vulnerability : CVE-2018-12264

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...

6.5CVSS6.3AI score0.01688EPSS

Linux Distros Unpatched Vulnerability : CVE-2019-13112

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badall...

6.5CVSS6.4AI score0.00252EPSS

Linux Distros Unpatched Vulnerability : CVE-2018-17581

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CiffDirectory::readDirectory at crwimageint.cpp in Exiv2 0.26 has excessive stack consumption due to a recursive function, leading to Denial of service...

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2020-18771

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmnint.cpp which can result in an information leak...

8.1CVSS6.9AI score0.00222EPSS