Exempi Project

Exempi

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2020-18651

Exploit
  • EPSS 2.43%
  • Veröffentlicht 22.08.2023 19:15:55
  • Zuletzt bearbeitet 21.11.2024 05:08:39

Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file with ID3V2 frame.

6.5

CVE-2020-18652

Exploit
  • EPSS 2.36%
  • Veröffentlicht 22.08.2023 19:15:55
  • Zuletzt bearbeitet 21.11.2024 05:08:40

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.

7.5

CVE-2018-12648

Exploit
  • EPSS 0.42%
  • Veröffentlicht 22.06.2018 13:29:00
  • Zuletzt bearbeitet 21.11.2024 03:45:36

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.

5.5

CVE-2017-18233

Exploit
  • EPSS 0.55%
  • Veröffentlicht 15.03.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:38

An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file.

7.8

CVE-2017-18234

Exploit
  • EPSS 0.62%
  • Veröffentlicht 15.03.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:38

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles...

5.5

CVE-2017-18235

Exploit
  • EPSS 0.41%
  • Veröffentlicht 15.03.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:38

An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles/source/FormatSupport/WEBP_Support.cpp does not ensure nonzero widths and heights, which allows remote attackers to cause a denial of service (assertion failure and applica...

5.5

CVE-2017-18236

Exploit
  • EPSS 0.87%
  • Veröffentlicht 15.03.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:38

An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file.

5.5

CVE-2017-18237

Exploit
  • EPSS 0.4%
  • Veröffentlicht 15.03.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:39

An issue was discovered in Exempi before 2.4.3. The PostScript_Support::ConvertToDate function in XMPFiles/source/FormatSupport/PostScript_Support.cpp allows remote attackers to cause a denial of service (invalid pointer dereference and application c...

5.5

CVE-2017-18238

Exploit
  • EPSS 0.52%
  • Veröffentlicht 15.03.2018 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:39

An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt fi...

5.5

CVE-2018-7728

Exploit
  • EPSS 0.5%
  • Veröffentlicht 06.03.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:37

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.