Lucene search
Veracode Vulnerability DatabaseVERACODE:30162HistoryApr 25, 2021 - 12:53 p.m.
Arbitrary Code Execution
2021-04-2512:53:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.002 Low
EPSS
Percentile
51.4%
jhead is vulnerable to arbitrary code execution. A heap-based buffer overflow in Get16u() in exif.c allows an attacker to execute arbitrary code on the host OS via a malicious file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jhead:sid | eq | 1:3.04-4 | |
| jhead:bullseye | eq | 1:3.04-4 | |
| jhead:bullseye | eq | 1:3.04-5 | |
| jhead:sid | eq | 1:3.04-4 | |
| jhead:bullseye | eq | 1:3.04-4 | |
| jhead:bullseye | eq | 1:3.04-5 |
Related
osv
osv
CVE-2021-3496
2021-04-22 19:15:07
Jhead vulnerabilities
2023-05-29 09:11:19
cvelist
cvelist
CVE-2021-3496
2021-04-22 00:00:00
nvd
nvd
CVE-2021-3496
2021-04-22 19:15:07
ubuntucve
ubuntucve
CVE-2021-3496
2021-04-22 00:00:00
nessus
nessus
openSUSE Security Update : jhead (openSUSE-2021-594)
2021-05-18 00:00:00
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM / 23.04 : Jhead vulnerabilities (USN-6110-1)
2023-05-29 00:00:00
GLSA-202210-17 : JHead: Multiple Vulnerabilities
2022-10-31 00:00:00
suse
suse
Security update for jhead (moderate)
2021-04-23 00:00:00
Security update for jhead (moderate)
2021-04-26 00:00:00
Security update for jhead (moderate)
2021-05-19 00:00:00
openvas
openvas
openSUSE: Security Advisory for jhead (openSUSE-SU-2021:0594-1)
2021-04-23 00:00:00
Mageia: Security Advisory (MGASA-2021-0328)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-6110-1)
2023-05-30 00:00:00
prion
prion
Heap overflow
2021-04-22 19:15:00
debiancve
debiancve
CVE-2021-3496
2021-04-22 19:15:07
cve
cve
CVE-2021-3496
2021-04-22 19:15:07
ubuntu
ubuntu
Jhead vulnerabilities
2023-05-29 00:00:00
mageia
mageia
Updated jhead packages fix security vulnerabilities
2021-07-10 15:56:54
gentoo
gentoo
JHead: Multiple Vulnerabilities
2022-10-31 00:00:00