Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exiv2 exiv2 0.26 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-17724
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file.
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2018-5772
In Exiv2 0.26, there is a segmentation fault caused by uncontrolled recursion in the Exiv2::Image::printIFDStructure function in the image.cpp file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file.
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2018-4868
The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 0.26 allows remote malicious users to cause a denial of service (excessive memory allocation) via a crafted file.
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2017-18005
Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in value.cpp, related to crafted metadata in a TIFF file.
Exiv2 Exiv2 0.26
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2017-17669
There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunk_int.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack.
Exiv2 Exiv2 0.26
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2017-1000126
exiv2 0.26 contains a Stack out of bounds read in webp parser
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2017-1000127
Exiv2 0.26 contains a heap buffer overflow in tiff parser
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2017-1000128
Exiv2 0.26 contains a stack out of bounds read in JPEG2000 parser
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2017-14866
There is a heap-based buffer overflow in the Exiv2::s2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
Exiv2 Exiv2 0.26
4.3
CVSSv2
CVE-2017-14857
In Exiv2 0.26, there is an invalid free in the Image class in image.cpp that leads to a Segmentation fault. A crafted input will lead to a denial of service attack.
Exiv2 Exiv2 0.26
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »