Vulnerabilities > Exiv2 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-17 | CVE-2017-11337 | Use After Free vulnerability in Exiv2 0.26 There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. | 4.3 |
| 2017-07-17 | CVE-2017-11336 | Out-of-bounds Read vulnerability in Exiv2 0.26 There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. | 4.3 |
| 2017-06-26 | CVE-2017-9953 | Use After Free vulnerability in multiple products There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault in Exiv2 0.26. | 5.0 |
| 2017-05-26 | CVE-2017-9239 | Divide By Zero vulnerability in multiple products An issue was discovered in Exiv2 0.26. | 6.5 |
| 2015-01-02 | CVE-2014-9449 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file. | 5.0 |
| 2008-06-13 | CVE-2008-2696 | Numeric Errors vulnerability in Exiv2 0.16 Exiv2 0.16 allows user-assisted remote attackers to cause a denial of service (divide-by-zero and application crash) via a zero value in Nikon lens information in the metadata of an image, related to "pretty printing" and the RationalValue::toLong function. | 4.3 |