Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

exiv2 — Vulnerabilities & Security Advisories 30

All 30 CVE vulnerabilities found in exiv2, with AI-generated Chinese analysis, references, and POCs.

Vendor: Exiv2

CVE IDTitleCVSSSeverityPublished
CVE-2026-25884 Exiv2: Out-of-bounds read in CrwMap::decode0x0805 CWE-125 8.2AIHighAI2026-03-02
CVE-2026-27596 Exiv2: Integer Underflow in LoaderNative::getData() Causes Heap Buffer Overflow CWE-125 6.2AIMediumAI2026-03-02
CVE-2026-27631 Exiv2: Uncaught exception - cannot create std::vector larger than max_size() CWE-248 5.5AIMediumAI2026-03-02
CVE-2025-55304 Exiv2 has quadratic performance in ICC profile parsing in JpegBase::readMetadata CWE-407 5.5 -2025-08-29
CVE-2025-54080 Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata() via crafted EPS file CWE-125 5.5 -2025-08-29
CVE-2025-26623 Use After Free in Exiv2 CWE-416 8.4 -2025-02-18
CVE-2024-39695 Exiv2 has an out-of-bounds read in AsfVideo::streamProperties CWE-125 5.3 Medium2024-07-08
CVE-2024-24826 Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder in Exiv2 CWE-125 5.5 Medium2024-02-12
CVE-2024-25112 Denial of service due to unbounded recursion in QuickTimeVideo::multipleEntriesDecoder in Exiv2 CWE-400 5.5 Medium2024-02-12
CVE-2023-44398 Out-of-bounds write in exiv2 CWE-787 8.8 High2023-11-06
CVE-2021-37619 Out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header CWE-125 4.7 Medium2021-08-09
CVE-2021-37623 Denial of service due to infinite loop in JpegBase::printStructure (#2) CWE-835 5.5 Medium2021-08-09
CVE-2021-37622 Denial of service due to infinite loop in JpegBase::printStructure (#1) CWE-835 5.5 Medium2021-08-09
CVE-2021-37621 Denial of service due to infinite loop in Image::printIFDStructure CWE-835 5.5 Medium2021-08-09
CVE-2021-37620 Out-of-bounds read in XmpTextValue::read() CWE-125 4.7 Medium2021-08-09
CVE-2021-37618 Out-of-bounds read in Exiv2::Jp2Image::printStructure CWE-125 4.7 Medium2021-08-09
CVE-2021-37616 Null pointer dereference in Exiv2::Internal::resolveLens0x8ff CWE-476 5.5 Medium2021-08-09
CVE-2021-37615 Null pointer dereference in Exiv2::Internal::resolveLens0x319 CWE-476 4.7 Medium2021-08-09
CVE-2021-34335 Denial of service due to FPE in Exiv2::Internal::resolveLens0xffff CWE-369 4.7 Medium2021-08-09
CVE-2021-34334 Denial of service due to integer overflow in loop counter CWE-835 5.5 Medium2021-08-09
CVE-2021-32815 Denial of service due to assertion failure in crwimage_int.cpp CWE-617 5.5 Medium2021-08-09
CVE-2021-32617 Denial of service in Exiv2 CWE-400 4.7 Medium2021-05-17
CVE-2021-29623 Uninitialized variable bug in Exiv2 CWE-908 3.6 Low2021-05-13
CVE-2021-29464 Heap buffer overflow in Exiv2::Jp2Image::encodeJp2Header CWE-122 3.3 Low2021-04-30
CVE-2021-29463 Out-of-bounds read in Exiv2::WebPImage::doWriteMetadata CWE-125 3.3 Low2021-04-30
CVE-2021-29473 Out-of-bounds read in Exiv2::Jp2Image::doWriteMetadata CWE-125 2.5 Low2021-04-26
CVE-2021-29470 Out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header CWE-125 4.7 Medium2021-04-23
CVE-2021-29457 Heap buffer overflow in Exiv2::Jp2Image::doWriteMetadata CWE-122 7.8 -2021-04-19
CVE-2021-29458 Out-of-bounds read in Exiv2::Internal::CrwMap::encode CWE-125 5.5 -2021-04-19
CVE-2021-3482 Exiv2 缓冲区错误漏洞 CWE-20 8.1 -2021-04-08

All 30 known CVE vulnerabilities affecting exiv2 with full Chinese analysis, references, and POCs where available.