📦 Exiv2

A heap buffer overflow vulnerability in Exiv2 versions 0.28.0 through 0.28.4 allows attackers to potentially execute arbitrary code by tricking victims into processing a crafted image file with metada...

CVE-2023-44398 is an out-of-bounds write vulnerability in Exiv2 v0.28.0 that allows remote code execution when processing a malicious image file. Attackers can exploit this by tricking users into open...

A buffer overflow vulnerability in Exiv2's PNG processing allows remote attackers to cause denial of service or potentially execute arbitrary code by providing a specially crafted PNG file. This affec...

This vulnerability in Exiv2 image metadata library allows attackers to read beyond allocated memory boundaries when processing specially crafted Nikon image files. This can lead to information disclos...

This CVE describes an integer overflow vulnerability in Exiv2's CrwMap::encode0x1810 function that allows attackers to trigger a heap-based buffer overflow via crafted metadata. Attackers can cause de...

CVE-2025-54080 is an out-of-bounds read vulnerability in Exiv2 library versions 0.28.5 and earlier. An attacker can cause denial of service by crashing Exiv2 when it writes metadata to a specially cra...