Exiv2

Exiv2

121 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2020-18771

Exploit
  • EPSS 0.21%
  • Veröffentlicht 23.08.2021 22:15:26
  • Zuletzt bearbeitet 21.11.2024 05:08:48

Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmn_int.cpp which can result in an information leak.

6.5

CVE-2020-18898

Exploit
  • EPSS 0.16%
  • Veröffentlicht 19.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:08:51

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file.

6.5

CVE-2020-18899

Exploit
  • EPSS 0.11%
  • Veröffentlicht 19.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:08:51

An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of Exiv2 0.27 allows attackers to cause a denial of service (DOS) via a crafted input.

5.5

CVE-2021-34335

  • EPSS 0.08%
  • Veröffentlicht 09.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:10:11

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A floating point exception (FPE) due to an integer divide by zero was found in Exiv2 versions v0.27.4 and earlier. The FPE is t...

5.5

CVE-2021-37615

  • EPSS 0.08%
  • Veröffentlicht 09.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:31

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A null pointer dereference was found in Exiv2 versions v0.27.4 and earlier. The null pointer dereference is triggered when Exiv...

5.5

CVE-2021-37620

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...

5.5

CVE-2021-37621

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to print th...

5.5

CVE-2021-37622

  • EPSS 0.09%
  • Veröffentlicht 09.08.2021 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:15:32

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify t...

5.5

CVE-2021-37616

  • EPSS 0.08%
  • Veröffentlicht 09.08.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:31

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A null pointer dereference was found in Exiv2 versions v0.27.4 and earlier. The null pointer dereference is triggered when Exiv...

5.5

CVE-2021-37618

  • EPSS 0.07%
  • Veröffentlicht 09.08.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:15:31

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...