Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-9144

Опубликовано: 25 фев. 2019
Источник: nvd
CVSS3: 8.8
CVSS2: 6.8
EPSS Низкий

Описание

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:exiv2:exiv2:0.27:*:*:*:*:*:*:*

EPSS

Процентиль: 80%
0.01388
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-674

Связанные уязвимости

ubuntu логотип

CVE-2019-9144

CVSS3: 8.8
ubuntu
почти 7 лет назад

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

redhat логотип

CVE-2019-9144

CVSS3: 6.5
redhat
почти 7 лет назад

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

debian логотип

CVE-2019-9144

CVSS3: 8.8
debian
почти 7 лет назад

An issue was discovered in Exiv2 0.27. There is infinite recursion at ...

github логотип

GHSA-h536-vfr2-h6pw

CVSS3: 8.8
github
больше 3 лет назад

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

EPSS

Процентиль: 80%
0.01388
Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-674