Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-0182

Опубликовано: 11 июн. 2020
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.4
CVSS3: 6.5

Описание

In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917

РелизСтатусПримечание
bionic

released

0.6.21-4ubuntu0.5
devel

not-affected

0.6.22-1
eoan

released

0.6.21-5.1ubuntu0.5
esm-infra-legacy/trusty

released

0.6.21-1ubuntu1+esm5
esm-infra/bionic

released

0.6.21-4ubuntu0.5
esm-infra/focal

released

0.6.21-6ubuntu0.3
esm-infra/xenial

released

0.6.21-2ubuntu0.5
focal

released

0.6.21-6ubuntu0.3
precise/esm

not-affected

0.6.20-2ubuntu0.6
trusty

ignored

end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 64%
0.00478
Низкий

6.4 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-0182

CVSS3: 6.5
redhat
больше 5 лет назад

In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917

nvd логотип

CVE-2020-0182

CVSS3: 6.5
nvd
больше 5 лет назад

In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917

debian логотип

CVE-2020-0182

CVSS3: 6.5
debian
больше 5 лет назад

In exif_entry_get_value of exif-entry.c, there is a possible out of bo ...

github логотип

GHSA-5mj9-pf4j-ccp7

github
больше 3 лет назад

In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917

fstec логотип

BDU:2024-07614

CVSS3: 6.5
fstec
почти 8 лет назад

Уязвимость функции exif_entry_get_value() компонента exif-entry.c библиотеки для грамматического разбора EXIF-файлов Libexif, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании

EPSS

Процентиль: 64%
0.00478
Низкий

6.4 Medium

CVSS2

6.5 Medium

CVSS3