Skip to main content

Metadata Extractor

2 CVEs product

Monthly

CVE-2022-24614 Maven MEDIUM POC PATCH This Month

When reading a specially crafted JPEG file, metadata-extractor up to 2.16.0 can be made to allocate large amounts of memory that finally leads to an out-of-memory error even for very small inputs. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Metadata Extractor
NVD GitHub
CVSS 3.1
5.5
EPSS
0.7%
CVE-2022-24613 Maven MEDIUM POC PATCH This Month

metadata-extractor up to 2.16.0 can throw various uncaught exceptions while parsing a specially crafted JPEG file, which could result in an application crash. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Metadata Extractor
NVD GitHub
CVSS 3.1
5.5
EPSS
0.8%
EPSS 1% CVSS 5.5
MEDIUM POC PATCH This Month

When reading a specially crafted JPEG file, metadata-extractor up to 2.16.0 can be made to allocate large amounts of memory that finally leads to an out-of-memory error even for very small inputs. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Metadata Extractor
NVD GitHub
EPSS 1% CVSS 5.5
MEDIUM POC PATCH This Month

metadata-extractor up to 2.16.0 can throw various uncaught exceptions while parsing a specially crafted JPEG file, which could result in an application crash. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Metadata Extractor
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy