CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Positive Technologies•added 2023/08/24 12:0 a.m.•2 views

PT-2023-35969 · Unknown +1 · Libbrotlidec +1

Name of the Vulnerable Software and Affected Versions: Exiv2 affected versions not specified Description: The issue is related to a crash caused by a container-overflow write in the BrotliDecoderDecompressStream function, which is called by Exiv2::BmffImage::brotliUncompress. This crash occurs in...

6.8AI score

Exploits0References2

SUSE CVE•added 2023/02/15 4:25 a.m.•1 views

SUSE CVE-2018-14046

Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp...

4.4CVSS9.6AI score0.00376EPSS

Exploits1References3

OSV•added 2021/08/30 12:0 a.m.•33 views

DLA-2750-1 exiv2 - security update

Bulletin has no description...

7.8CVSS6.2AI score0.03067EPSS

Exploits3

OSV•added 2021/08/23 10:15 p.m.•1 views

PYSEC-2021-883

An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...

6.5CVSS6.8AI score

Exploits0References2

OSV•added 2021/08/23 10:15 p.m.•1 views

PYSEC-2021-884

A float point exception in the printLong function in tagsint.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...

6.5CVSS6.8AI score

Exploits0References2

OSV•added 2020/01/27 5:15 a.m.•4 views

PYSEC-2020-344

In Jp2Image::readMetadata in jp2image.cpp in Exiv2 0.27.2, an input file can result in an infinite loop and hang, with high CPU consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file...

7.5CVSS6.8AI score

Exploits0References5

OSV•added 2018/11/08 8:29 a.m.•1 views

PYSEC-2018-141

In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp called from psdimage.cpp in the PSD image reader may suffer from a denial of service heap-based buffer over-read caused by an integer overflow via a crafted PSD image file...

6.5CVSS7.4AI score

Exploits0References6

OSV•added 2018/05/10 2:29 a.m.•1 views

PYSEC-2018-126

In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call...

6.5CVSS7AI score

Exploits0References7

OSV•added 2018/05/07 7:29 a.m.•2 views

PYSEC-2018-125

Exiv2::Image::byteSwap2 in image.cpp in Exiv2 0.26 has a heap-based buffer over-read...

6.5CVSS7.3AI score

Exploits0References2

OSV•added 2017/12/31 7:29 p.m.•1 views

PYSEC-2017-141

Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in value.cpp, related to crafted metadata in a TIFF file...

5.5CVSS7AI score

Exploits0References2

OSV•added 2017/12/13 10:29 p.m.•2 views

PYSEC-2017-140

There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunkint.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack...

5.5CVSS7.3AI score

Exploits0References3

OSV•added 2017/10/26 12:0 a.m.•24 views

DLA-1147-1 exiv2 - security update

Bulletin has no description...

7.5CVSS6.6AI score0.0048EPSS

Exploits4

OSV•added 2017/07/27 6:29 a.m.•2 views

PYSEC-2017-126

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

6.5CVSS7.1AI score

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by