Vulnerabilities > CVE-2017-11118 - Infinite Loop vulnerability in Openexif Project Openexif 2.1.4

047910
CVSS 7.1 - HIGH
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE

Summary

The ExifImageFile::readImage function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted jpg file.

Vulnerable Configurations

Part Description Count
Application
Openexif_Project
1