Lucene search
K

165 matches found

CVE
CVE
added 2020/05/21 3:50 p.m.236 views

CVE-2020-13114

CVE-2020-13114 affects libexif up to version 0.6.21, where an unrestricted size in handling Canon EXIF MakerNote data can cause excessive compute time during EXIF decoding (DoS). Affected component: libexif (exif-data.c/maker-note handling). Impact described across multiple advisories: potential ...

7.5CVSS8.1AI score0.02301EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2020/05/21 3:50 p.m.20 views

CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

8.2AI score0.02301EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2020/05/21 3:50 p.m.45 views

CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS8.3AI score0.02301EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/05/21 3:50 p.m.26 views

CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS7.7AI score0.02301EPSS
Exploits0
CNVD
CNVD
added 2020/05/21 12:0 a.m.2 views

libexif code issue vulnerability

libexif is a library of functions written in the C language. It is mainly used to read and write EXIF meta-information from graphics files. A code issue vulnerability exists in versions prior to libexif 0.6.22 that stems from the use of uninitialized memory during EXIF Makernote processing. An...

8.2CVSS8.9AI score0.01887EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/21 12:0 a.m.2 views

Libexif Buffer Overflow Vulnerability

libexif is a library of functions written in the C language. It is mainly used to read and write EXIF meta-information from graphics files. A buffer overflow vulnerability exists in the processing of EXIF MakerNote in versions prior to libexif 0.6.22. An attacker could exploit this vulnerability ...

9.1CVSS9AI score0.02684EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/21 12:0 a.m.3 views

libexif Resource Management Error Vulnerability

libexif is a library of functions written in the C language. It is mainly used to read and write EXIF meta-information from graphics files. A security vulnerability exists in versions prior to libexif 0.6.22, which stems from the program failing to limit the size value when processing Canon EXIF...

7.5CVSS9AI score0.02301EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/04/28 3:44 p.m.4 views

LibRaw: stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

8.8CVSS7.8AI score0.0207EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/11/01 1:3 p.m.2 views

php: Uninitialized read in exif_process_IFD_in_MAKERNOTE

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exifprocessIFDinMAKERNOTE because of mishandling the datalen variable...

7.5CVSS7.3AI score0.08202EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2019/06/18 12:0 a.m.2 views

The vulnerability of the parse_makernote function in the LibRaw image processing library allows a hacker to trigger a service failure.

The vulnerability of the parsemakernote function in the LibRaw image processing library is related to buffer overflow in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

8.8CVSS5.8AI score0.0207EPSS
Exploits1References4Affected Software3
CNVD
CNVD
added 2019/03/11 12:0 a.m.1 views

PHP Uninitialized Read Vulnerability (CNVD-2019-24791)

PHP is a general-purpose open source scripting language. The syntax absorbs the characteristics of the C language , Java and Perl , easy to learn , widely used , mainly in the field of Web development . An uninitialized read vulnerability exists in exifprocessIFDinMAKERNOTE in the EXIF component ...

7.5CVSS8.8AI score0.08202EPSS
Exploits1References1
CNVD
CNVD
added 2019/03/11 12:0 a.m.2 views

PHP Uninitialized Read Vulnerability (CNVD-2019-24792)

PHP is a general-purpose open source scripting language. The syntax absorbs the characteristics of the C language , Java and Perl , easy to learn , widely used , mainly in the field of Web development . An uninitialized read vulnerability exists in exifprocessIFDinMAKERNOTE in the EXIF component ...

7.5CVSS8.9AI score0.06677EPSS
Exploits1References1
CNVD
CNVD
added 2018/12/24 12:0 a.m.1 views

LibRaw stack buffer overflow vulnerability (CNVD-2018-26473)

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A stack-based buffer overflow vulnerability exists in the 'parsemakernote' function of the dcrawcommon.cpp file in LibRaw version 0.19.1. An attacker can exploit this...

8.8CVSS8.7AI score0.0207EPSS
Exploits1References1
OSV
OSV
added 2018/12/21 9:29 a.m.1 views

DEBIAN-CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

8.8CVSS7.6AI score0.0207EPSS
Exploits1References1
OSV
OSV
added 2018/12/21 12:0 a.m.3 views

UBUNTU-CVE-2018-20337

There is a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact...

8.8CVSS7.1AI score0.0207EPSS
Exploits1References3
OSV
OSV
added 2018/08/02 7:29 p.m.4 views

ALPINE-CVE-2018-14851

exifprocessIFDinMAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG file...

5.5CVSS6.7AI score0.04306EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2018/08/02 7:0 p.m.44 views

CVE-2018-14851

exifprocessIFDinMAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG file...

5.5CVSS6.3AI score0.04306EPSS
Exploits0
OSV
OSV
added 2018/08/02 12:0 a.m.2 views

UBUNTU-CVE-2018-14851

exifprocessIFDinMAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG file...

5.5CVSS6.8AI score0.04306EPSS
Exploits0References6
NVD
NVD
added 2018/04/29 9:29 p.m.39 views

CVE-2018-10549

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

8.8CVSS8.6AI score0.0725EPSS
Exploits0References13
Cvelist
Cvelist
added 2018/04/29 9:0 p.m.46 views

CVE-2018-10549

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

7.9AI score0.0725EPSS
Exploits0References13
Rows per page
Query Builder