Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-14338

Опубликовано: 17 июл. 2018
Источник: nvd
CVSS3: 8.1
CVSS2: 6.8
EPSS Низкий

Описание

samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms (other than Apple platforms) where glibc is not used, possibly leading to a buffer overflow.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:exiv2:exiv2:0.26:*:*:*:*:*:*:*

EPSS

Процентиль: 61%
0.00414
Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVSS3: 8.1
ubuntu
около 7 лет назад

samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms (other than Apple platforms) where glibc is not used, possibly leading to a buffer overflow.

CVSS3: 3.3
redhat
около 7 лет назад

samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms (other than Apple platforms) where glibc is not used, possibly leading to a buffer overflow.

CVSS3: 8.1
debian
около 7 лет назад

samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realp ...

CVSS3: 8.1
github
около 3 лет назад

samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms (other than Apple platforms) where glibc is not used, possibly leading to a buffer overflow.

rocky
больше 5 лет назад

Moderate: exiv2 security, bug fix, and enhancement update

EPSS

Процентиль: 61%
0.00414
Низкий

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-119