Lucene search
Veracode Vulnerability DatabaseVERACODE:37710HistoryOct 28, 2022 - 7:51 a.m.
Heap-based Buffer Overflow
2022-10-2807:51:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
0 Low
EPSS
Percentile
0.0%
libexiv2.so is vulnerable to heap based buffer overflow. The vulnerability is due to the userDataDecoder function in quicktimevideo.cpp, where an attacker can remotely cause a buffer overflow.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libexiv2.so | le | 26.0.0 | |
| libexiv2.so | le | 0.27.5 | |
| libexiv2.so | le | 26.0.0 | |
| libexiv2.so | le | 0.27.5 |
Related
redhatcve
redhatcve
CVE-2022-3719
2022-11-11 05:26:21
alpinelinux
alpinelinux
CVE-2022-3719
2022-10-27 11:15:12
prion
prion
Design/Logic Flaw
2022-10-27 11:15:00
debiancve
debiancve
CVE-2022-3719
2022-10-27 11:15:00
cbl_mariner
cbl_mariner
CVE-2022-3719 affecting package exiv2 for versions less than 0.28.0-1
2023-09-28 12:35:58
cve
cve
CVE-2022-3719
2022-10-27 11:15:12
nvd
nvd
CVE-2022-3719
2022-10-27 11:15:12
cvelist
cvelist
CVE-2022-3719
1976-01-01 00:00:00
ubuntucve
ubuntucve
CVE-2022-3719
2022-10-27 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : exiv2 (EulerOS-SA-2023-1500)
2023-03-08 00:00:00
RHEL 7 : exiv2 (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 6 : exiv2 (Unpatched Vulnerability)
2024-05-11 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2023-1500)
2023-03-09 00:00:00
redos
redos
ROS-20221009-01
2022-10-09 00:00:00