Lucene search
K

16 matches found

CNNVD
CNNVD
added 2026/04/07 12:0 a.m.5 views

go-ipld-prime 安全漏洞

go-ipld-prime is an implementation of the IPLD open-source specification interface. Versions of go-ipld-prime prior to 0.22.0 contained security vulnerabilities. These vulnerabilities stemmed from the DAG-CBOR decoder using the set size declared in the CBOR header as a hint for Go’s pre-allocatio...

6.2CVSS7.3AI score0.00156EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.23 views

NewStart CGSL MAIN 6.02 : libexif Multiple Vulnerabilities (NS-SA-2021-0068)

The remote NewStart CGSL host, running version MAIN 6.02, has libexif packages installed that are affected by multiple vulnerabilities: - In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider...

9.8CVSS7.5AI score0.04262EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.42 views

CentOS 8 : libexif (CESA-2020:4766)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4766 advisory. - libexif: out of bounds write in exif-data.c CVE-2019-9278 - libexif: out of bounds read due to a missing bounds check in exifdatasavedataentry functi...

8.8CVSS6.7AI score0.04262EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for libexif (EulerOS-SA-2020-2356)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.9AI score0.02684EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/20 12:0 a.m.37 views

CentOS 7 : libexif (RHSA-2020:4040)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4040 advisory. - In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media conten...

8.8CVSS7AI score0.04059EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2020/10/07 12:0 a.m.35 views

Oracle Linux 7 : libexif (ELSA-2020-4040)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4040 advisory. 0.6.22-1 - Upgrade to 0.6.22 - Resolves: 1841316 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

8.8CVSS6.8AI score0.04059EPSS
Exploits0References7
Veracode
Veracode
added 2020/10/01 3:51 a.m.28 views

Denial Of Service (DoS)

libexif is vulnerable to denial of service. Unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time and a potential application crash...

7.5CVSS2.6AI score0.02301EPSS
Exploits0References8Affected Software1
RedHat Linux
RedHat Linux
added 2020/09/29 8:17 p.m.3 views

libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS7.4AI score0.02301EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.32 views

RHEL 7 : libexif (RHSA-2020:4040)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4040 advisory. The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a lat...

8.8CVSS6.9AI score0.04059EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.40 views

EulerOS 2.0 SP3 : libexif (EulerOS-SA-2020-2142)

According to the versions of the libexif package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - exifentrygetvalue in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.CVE-2020-12767 - An issue was discovered in libexif before 0.6.22...

9.1CVSS7.4AI score0.02684EPSS
Exploits0References5
Mageia
Mageia
added 2020/05/27 7:6 p.m.41 views

Updated libexif packages fix security vulnerability

The updated packages fix a security vulnerability: In exifdatasavedataentry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for...

9.1CVSS1.2AI score0.02684EPSS
Exploits0References4
OSV
OSV
added 2020/05/21 4:15 p.m.1 views

ALPINE-CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS6.9AI score0.02301EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2020/05/21 4:15 p.m.22 views

CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS6.9AI score0.02301EPSS
Exploits0References2
OSV
OSV
added 2020/05/21 4:15 p.m.1 views

UBUNTU-CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS6.9AI score0.02301EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2020/05/21 3:50 p.m.45 views

CVE-2020-13114

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data...

7.5CVSS8.3AI score0.02301EPSS
Exploits0
Cvelist
Cvelist
added 2018/06/07 12:0 p.m.21 views

CVE-2017-6779

Multiple Cisco products are affected by a vulnerability in local file management for certain system log files of Cisco collaboration products that could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service DoS condition. The vulnerability occu...

7.5AI score0.01984EPSS
Exploits0References1
Rows per page
Query Builder