Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exiv2 exiv2 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-14046
Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp.
Exiv2 Exiv2 0.26
6.8
CVSSv2
CVE-2019-14368
Exiv2 0.27.99.0 has a heap-based buffer over-read in Exiv2::RafImage::readMetadata() in rafimage.cpp.
Exiv2 Exiv2 0.27.99.0
4.3
CVSSv2
CVE-2020-18774
A float point exception in the printLong function in tags_int.cpp of Exiv2 0.27.99.0 allows malicious users to cause a denial of service (DOS) via a crafted tif file.
Exiv2 Exiv2 0.27.99.0
4.3
CVSSv2
CVE-2018-17230
Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote malicious users to cause a denial of service (heap-based buffer overflow) via a crafted image file.
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2018-17282
An issue exists in Exiv2 v0.26. The function Exiv2::DataValue::copy in value.cpp has a NULL pointer dereference.
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2017-1000128
Exiv2 0.26 contains a stack out of bounds read in JPEG2000 parser
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2018-19607
Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
Exiv2 Exiv2 0.27
4.3
CVSSv2
CVE-2018-20098
There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.
Exiv2 Exiv2 0.27
4.3
CVSSv2
CVE-2018-20099
There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.
Exiv2 Exiv2 0.27
4.3
CVSSv2
CVE-2018-5772
In Exiv2 0.26, there is a segmentation fault caused by uncontrolled recursion in the Exiv2::Image::printIFDStructure function in the image.cpp file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file.
Exiv2 Exiv2 0.26
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »