CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

Tenable Nessus•added 2026/04/23 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: libexif (UTSA-2026-014285)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014285 advisory. libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exifmnotedatagetvalue function gets passed in a 0 size, the passed in-buffer would be overwritten du...

7.8CVSS5.3AI score0.00008EPSS

Exploits1References4

Snyk•added 2026/03/16 8:45 a.m.•1 views

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound in the exifmnotedatagetvalue function when a size of 0 is passed as an argument during decoding MakerNotes. An attacker can cause the in-buffer to be overwritten and potentially execute arbitrary cod...

8.6CVSS6.1AI score0.00008EPSS

Exploits1References2

Tenable Nessus•added 2026/01/14 12:0 a.m.•1 views

MiracleLinux 4 : libexif-0.6.21-5.AXS4 (AXSA:2012-974:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-974:01 advisory. Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you t...

7.5CVSS6.3AI score0.0671EPSS

Exploits0References8

SUSE CVE•added 2023/02/15 5:46 a.m.•0 views

SUSE CVE-2012-2837

The mnoteolympusentrygetvalue function in olympus/mnote-olympus-entry.c in the EXIF Tag Parsing Library aka libexif before 0.6.21 allows remote attackers to cause a denial of service divide-by-zero error via an image with crafted EXIF tags that are not properly handled during the formatting of EX...

5CVSS6.8AI score0.01256EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 4:59 a.m.•1 views

SUSE CVE-2016-6328

A vulnerability was found in libexif. An integer overflow when parsing the MNOTE entry data of the input file. This can cause Denial-of-Service DoS and Information Disclosure disclosing some critical heap chunk metadata, even other applications' private data...

5.3CVSS6.9AI score0.0057EPSS

Exploits0References8

UbuntuCve•added 2018/10/31 10:29 p.m.•24 views

CVE-2016-6328

8.1CVSS6.8AI score0.0057EPSS

Exploits0References2

OSV•added 2018/10/31 10:29 p.m.•0 views

UBUNTU-CVE-2016-6328

8.1CVSS6.8AI score0.0057EPSS

Exploits0References3

NVD•added 2018/10/31 10:29 p.m.•19 views

CVE-2016-6328

8.1CVSS6.8AI score0.0057EPSS

Exploits0References5

OSV•added 2018/10/31 10:29 p.m.•1 views

DEBIAN-CVE-2016-6328

8.1CVSS6.8AI score0.0057EPSS

Exploits0References1

OSV•added 2018/10/31 10:29 p.m.•24 views

CVE-2016-6328

8.1CVSS3.7AI score0.0057EPSS

Exploits0References5

OSV•added 2018/10/31 10:29 p.m.•1 views

ALPINE-CVE-2016-6328

8.1CVSS6.8AI score0.0057EPSS

Exploits0References1

Debian CVE•added 2018/10/31 9:0 p.m.•29 views

CVE-2016-6328

8.1CVSS7.2AI score0.0057EPSS

Exploits0

CVE•added 2018/10/31 9:0 p.m.•281 views

CVE-2016-6328

CVE-2016-6328 affects the libexif library, where an integer overflow during parsing of the MNOTE entry data in input files can lead to Denial-of-Service and Information Disclosure (including sensitive heap data). Public remediation exists: Debian LTS fixed in libexif 0.6.21-2+deb8u2; Cloud Foundr...

8.1CVSS7.8AI score0.0057EPSS

Exploits0References5Affected Software1