CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-0058

Malware in sbrugna...

8.8CVSS9.1AI score0.00376EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-6072

Malware in sbrugna...

6.5CVSS7.8AI score0.00604EPSS

Exploits1References5

Tenable Nessus•added 2023/09/07 12:0 a.m.•32 views

Oracle Linux 7 : exiv2 (ELSA-2019-2101)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-2101 advisory. 0.27.0-2 - Minor improvements Resolves: bz1652637 0.27.0-1 - Exiv2 0.27.0 Resolves: bz1652637 Tenable has extracted the preceding description block...

8.8CVSS6.5AI score0.02356EPSS

Exploits20References23

Veracode•added 2022/10/31 5:53 a.m.•20 views

Buffer Overflow

libexiv2.so is vulnerable to buffer overflow. The vulnerability exists when datasize is less than headersize in the WebPImage::getHeaderOffset function of webpimage.cpp, allowing an attacker to cause an application crash through the integer overflow by providing a malicious input...

6.5CVSS6.4AI score0.00604EPSS

Exploits1References6Affected Software1

Microsoft CVE•added 2022/01/19 8:0 a.m.•3 views

Out-of-bounds read in Exiv2::WebPImage::doWriteMetadata

...

5.5CVSS6.5AI score0.00099EPSS

Exploits0

Vulnrichment•added 2021/04/30 12:0 a.m.•25 views

CVE-2021-29463 Out-of-bounds read in Exiv2::WebPImage::doWriteMetadata

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

3.3CVSS6.8AI score0.00099EPSS

Exploits0References5

Cvelist•added 2021/04/30 12:0 a.m.•20 views

CVE-2021-29463 Out-of-bounds read in Exiv2::WebPImage::doWriteMetadata

3.3CVSS6.3AI score0.00099EPSS

Exploits0References5

Mageia•added 2020/05/05 12:20 p.m.•34 views

Updated exiv2 packages fix security vulnerability

The updated packages fix a security vulnerability: A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file. CVE-2019-13111...

5.5CVSS3.1AI score0.00274EPSS

Exploits1References2

Veracode•added 2020/04/29 2:39 a.m.•24 views

Denial Of Service (DoS)

exiv2 is vulnerable to denial of service DoS. The vulnerability exists through an integer overflow in WebPImage::decodeChunks...

5.5CVSS3.5AI score0.00274EPSS

Exploits1References7Affected Software4

OpenVAS•added 2020/01/23 12:0 a.m.•22 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2072)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.00604EPSS

Exploits1References2

Tenable Nessus•added 2019/09/30 12:0 a.m.•29 views

EulerOS 2.0 SP8 : exiv2 (EulerOS-SA-2019-2072)

According to the version of the exiv2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In Exiv2 before v0.27.2, there is an integer overflow vulnerability in the WebPImage::getHeaderOffset function in webpimage.cpp. It can lead to a...

6.5CVSS7.7AI score0.00604EPSS

Exploits1References2