Search Results (Refine Search)
- CPE Product Version: cpe:/a:exiv2:exiv2:0.27:-
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2020-18899 |
An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of Exiv2 0.27 allows attackers to cause a denial of service (DOS) via a crafted input. Published: August 19, 2021; 6:15:07 PM -0400 |
V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2020-18898 |
A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file. Published: August 19, 2021; 6:15:07 PM -0400 |
V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM |