CVE-2025-54080 – CVE-2025-54080 is an out-of-bounds read vulnera... (How to Fix)

Q: What is the severity of CVE-2025-54080?

CVE-2025-54080 has a CVSS score of 5.5 (MEDIUM). CVE-2025-54080 is an out-of-bounds read vulnerability in Exiv2 library versions 0.28.5 and earlier. An attacker can cause denial of service by crashing Exiv2 when it writes metadata to a specially crafted image file. This affects users and applications that process image metadata with vulnerable Exiv2 versions.

📋 TL;DR

CVE-2025-54080 is an out-of-bounds read vulnerability in Exiv2 library versions 0.28.5 and earlier. An attacker can cause denial of service by crashing Exiv2 when it writes metadata to a specially crafted image file. This affects users and applications that process image metadata with vulnerable Exiv2 versions.

💻 Affected Systems

Products:

Exiv2 library
Applications using Exiv2 library

Versions: 0.28.5 and earlier

Operating Systems: Linux, Windows, macOS, BSD

Default Config Vulnerable: ⚠️ Yes

Notes: Only triggered during metadata writing operations, not during reading operations. Applications must use Exiv2's metadata writing functionality to be vulnerable.

📦 What is this software?

Exiv2 by Exiv2

View all CVEs affecting Exiv2 →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Application crash leading to denial of service, potentially disrupting image processing workflows or services that rely on Exiv2 for metadata operations.

🟠

Likely Case

Application crash when processing malicious image files during metadata writing operations, requiring restart of affected processes.

🟢

If Mitigated

No impact if patched version is used or if metadata writing operations are restricted to trusted sources.

🌐 Internet-Facing: MEDIUM - Web applications or services that accept user-uploaded images and use Exiv2 for metadata processing could be vulnerable to DoS attacks.

🏢 Internal Only: LOW - Primarily affects users who manually process untrusted image files with Exiv2 command-line tools or applications.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: NO

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires victim to process a crafted image file. No authentication needed if application accepts untrusted files. The advisory includes technical details but no public exploit code.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 0.28.6

Vendor Advisory: https://github.com/Exiv2/exiv2/security/advisories/GHSA-496f-x7cq-cq39

Restart Required: Yes

Instructions:

1. Update Exiv2 to version 0.28.6 or later. 2. For package managers: Use system package manager (apt, yum, brew, etc.) to update. 3. For source builds: Download latest release from GitHub and rebuild. 4. Restart any applications or services using Exiv2.

🔧 Temporary Workarounds

Disable metadata writing

all

Configure applications to disable Exiv2 metadata writing operations for untrusted image sources

Input validation

all

Implement strict file type validation and sanitization for image uploads

🧯 If You Can't Patch

Restrict metadata writing operations to trusted, verified image files only
Implement application-level sandboxing or containerization to limit impact of crashes

🔍 How to Verify

Check if Vulnerable:

Check Exiv2 version: exiv2 --version | grep -i version. If version is 0.28.5 or earlier, system is vulnerable.

Check Version:

exiv2 --version

Verify Fix Applied:

After update, verify version is 0.28.6 or later: exiv2 --version

📡 Detection & Monitoring

Log Indicators:

Application crashes or segmentation faults when processing image files
Error messages related to Exiv2 metadata operations

Network Indicators:

Unusual patterns of image file uploads to web applications

SIEM Query:

source="application.log" AND ("segmentation fault" OR "crash" OR "exiv2") AND "image"

📊 Metadata

CVE ID: CVE-2025-54080

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE: CWE-125

EPSS Score: 0.03% exploit probability (6.7th percentile)

Published: August 29, 2025

Last Updated: September 2, 2025

🔗 References

https://github.com/Exiv2/exiv2/commit/e737332427711f15bcdc4e903203d6b7493eaec0 Patch
https://github.com/Exiv2/exiv2/security/advisories/GHSA-496f-x7cq-cq39 Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-54080, you might also want to check these: