Exiv2

Exiv2

124 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2026-25884

Exploit
  • EPSS 0.04%
  • Veröffentlicht 02.03.2026 19:41:21
  • Zuletzt bearbeitet 05.03.2026 12:32:39

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found. The vulnerability is in the CRW image parser. This issue has been pa...

7.5

CVE-2026-27596

  • EPSS 0.05%
  • Veröffentlicht 02.03.2026 19:40:48
  • Zuletzt bearbeitet 05.03.2026 22:16:24

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found in Exiv2. The vulnerability is in the preview component, which is onl...

5.3

CVE-2026-27631

  • EPSS 0.03%
  • Veröffentlicht 02.03.2026 19:40:45
  • Zuletzt bearbeitet 05.03.2026 12:31:24

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an uncaught exception was found in Exiv2. The vulnerability is in the preview component, which is onl...

5.5

CVE-2025-55304

Exploit
  • EPSS 0.01%
  • Veröffentlicht 29.08.2025 15:15:35
  • Zuletzt bearbeitet 02.09.2025 13:21:14

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A denial-of-service was found in Exiv2 version 0.28.5: a quadratic algorithm in the ICC profile parsing code in jpegBase::read...

5.5

CVE-2025-54080

  • EPSS 0.03%
  • Veröffentlicht 29.08.2025 14:50:17
  • Zuletzt bearbeitet 02.09.2025 13:29:38

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2 versions 0.28.5 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

9.8

CVE-2025-26623

Exploit
  • EPSS 0.33%
  • Veröffentlicht 18.02.2025 20:15:33
  • Zuletzt bearbeitet 02.09.2025 21:37:53

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A heap buffer overflow was found in Exiv2 versions v0.28.0 to v0.28.4. Versions prior to v0.28.0, such as v0.27.7, are **not**...

6.5

CVE-2024-39695

  • EPSS 0.31%
  • Veröffentlicht 08.07.2024 16:15:08
  • Zuletzt bearbeitet 21.11.2024 09:28:14

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.2. The vulnerability is in the parser for the ASF video format, which wa...

5

CVE-2024-24826

  • EPSS 0.04%
  • Veröffentlicht 12.02.2024 23:15:08
  • Zuletzt bearbeitet 21.11.2024 08:59:47

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.1. The vulnerable function, `QuickTimeVideo::NikonTagsDecoder`, was new ...

5

CVE-2024-25112

  • EPSS 0.05%
  • Veröffentlicht 12.02.2024 23:15:08
  • Zuletzt bearbeitet 21.11.2024 09:00:16

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A denial-of-service was found in Exiv2 version v0.28.1: an unbounded recursion can cause Exiv2 to crash by exhausting the stack...

8.8

CVE-2023-44398

  • EPSS 0.47%
  • Veröffentlicht 06.11.2023 18:15:08
  • Zuletzt bearbeitet 21.11.2024 08:25:49

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds write was found in Exiv2 version v0.28.0. The vulnerable function, `BmffImage::brotliUncompress`, is new in v...