Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Rated low severity (CVSS 2.5), this vulnerability is no authentication required. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.
Buffer Overflow
Denial Of Service
Information Disclosure
Exiv2
Fedora
+1
NVD
GitHub
CVSS 3.1
2.5
EPSS
1.7%