GHSA-m3fr-3g6g-rc8x

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file.

Ссылки

EPSS

Процентиль: 67%

0.00547

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-17229

Дефекты

CWE-787

Связанные уязвимости

CVE-2018-17229

CVSS3: 6.5

ubuntu

почти 7 лет назад

Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file.

CVE-2018-17229

CVSS3: 3.3

redhat

почти 7 лет назад

Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file.

CVE-2018-17229

CVSS3: 6.5

nvd

почти 7 лет назад

Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file.

CVE-2018-17229

CVSS3: 6.5

debian

почти 7 лет назад

Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to c ...

openSUSE-SU-2020:0482-1

suse-cvrf

больше 5 лет назад

Security update for exiv2

EPSS

Процентиль: 67%

0.00547

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-17229

Дефекты

CWE-787