CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-10772 – exiv2: OOB read in pngimage.cpp:tEXtToDataBuf() allows for crash via crafted file
https://notcve.org/view.php?id=CVE-2018-10772
07 May 2018 — The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file. La función tEXtToDataBuf en pngimage.cpp en Exiv2 hasta la versión 0.26 permite que atacantes remotos provoquen una denegación de servicio (cierre inesperado de la aplicación) o, posiblemente, cualquier otro tipo de problema mediante un archivo manipulado. The exiv2 packages provide a command line utility which... • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-9303 – exiv2: assertion failure in BigTiffImage::readData in bigtiffimage.cpp
https://notcve.org/view.php?id=CVE-2018-9303
04 Apr 2018 — In Exiv2 0.26, an assertion failure in BigTiffImage::readData in bigtiffimage.cpp results in an abort. En Exiv2 0.26, un fallo de aserción en BigTiffImage::readData en bigtiffimage.cpp resulta en un aborto. The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addressed include buffer overflow, denial of service, integer overflow, null pointer, and out of bounds read vulnerabilities. • https://github.com/xiaoqx/pocs/blob/master/exiv2/readme.md • CWE-617: Reachable Assertion •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9304 – exiv2: divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp
https://notcve.org/view.php?id=CVE-2018-9304
04 Apr 2018 — In Exiv2 0.26, a divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp could result in denial of service. En Exiv2 0.26, una división entre cero en BigTiffImage::printIFD en bigtiffimage.cpp podría resultar en una denegación de servicio (DoS). The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addressed include buffer overflow, denial of service, integer overflow, null pointer, and out of bounds read vulnerab... • https://github.com/Exiv2/exiv2/issues/262 • CWE-369: Divide By Zero •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9305 – exiv2: out of bounds read in IptcData::printStructure in iptc.c
https://notcve.org/view.php?id=CVE-2018-9305
04 Apr 2018 — In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case. En Exiv2 0.26, una lectura fuera de límites en IptcData::printStructure en iptc.c podría resultar en un cierre inesperado o una fuga de información. Esto está relacionado con el caso "== 0x1c". An out-of-bounds read vulnerability has been discovered in IptcData::printStructure in iptc.cpp file of Exiv2 0.26. An attacker could cause a crash or an information l... • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html • CWE-125: Out-of-bounds Read •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9144 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2018-9144
30 Mar 2018 — In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. It could result in denial of service or information disclosure. En Exiv2 0.26, existe una lectura fuera de límites en Exiv2::Internal::binaryToString en image.cpp. Esto podría resultar en una denegación de servicio (DoS) o divulgación de información. Multiple vulnerabilities have been found in Exiv2, the worst of which could result in a Denial of Service condition. • https://github.com/Exiv2/exiv2/issues/254 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 2%CPEs: 6EXPL: 0CVE-2007-6353
https://notcve.org/view.php?id=CVE-2007-6353
20 Dec 2007 — Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow. Desbordamiento de búfer en exif.cpp en la libreria exiv2 permite a atacantes dependientes del contexto ejecutar código de su elección a través de archivos EXIF manipulados que disparan un desbordamiento de búfer basado en pila. • http://bugs.gentoo.org/show_bug.cgi?id=202351 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 10%CPEs: 8EXPL: 2CVE-2005-4676 – Exiv2 - Corrupted EXIF Data Denial of Service
https://notcve.org/view.php?id=CVE-2005-4676
31 Dec 2005 — Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service (application crash) via images with crafted IPTC metadata. • https://www.exploit-db.com/exploits/27140 •