Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-7728 | 4.3 |
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.
|
26-10-2020 - 12:17 | 06-03-2018 - 18:29 | |
CVE-2018-7729 | 4.3 |
An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp.
|
26-10-2020 - 12:17 | 06-03-2018 - 18:29 | |
CVE-2018-7730 | 4.3 |
An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.
|
26-10-2020 - 12:17 | 06-03-2018 - 18:29 | |
CVE-2018-7731 | 4.3 |
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class.
|
26-10-2020 - 12:17 | 06-03-2018 - 18:29 | |
CVE-2017-18238 | 4.3 |
An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt fi
|
03-10-2019 - 00:03 | 15-03-2018 - 19:29 | |
CVE-2017-18233 | 4.3 |
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file.
|
03-10-2019 - 00:03 | 15-03-2018 - 19:29 | |
CVE-2017-18236 | 4.3 |
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file.
|
03-10-2019 - 00:03 | 15-03-2018 - 19:29 | |
CVE-2017-18234 | 6.8 |
An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles
|
06-08-2019 - 17:15 | 15-03-2018 - 19:29 |