Vulnerability Details CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.0%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 5.8
References
- http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html
- https://access.redhat.com/errata/RHSA-2019:2101
- https://github.com/Exiv2/exiv2/issues/263
- https://github.com/xiaoqx/pocs/blob/master/exiv2/readme.md
- https://security.gentoo.org/glsa/201811-14
- http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html
- https://access.redhat.com/errata/RHSA-2019:2101
- https://github.com/Exiv2/exiv2/issues/263
- https://github.com/xiaoqx/pocs/blob/master/exiv2/readme.md
- https://security.gentoo.org/glsa/201811-14
Products affected by CVE-2018-9305
-
cpe:2.3:a:exiv2:exiv2:-
-
cpe:2.3:a:exiv2:exiv2:0.10
-
cpe:2.3:a:exiv2:exiv2:0.11
-
cpe:2.3:a:exiv2:exiv2:0.12
-
cpe:2.3:a:exiv2:exiv2:0.13
-
cpe:2.3:a:exiv2:exiv2:0.14
-
cpe:2.3:a:exiv2:exiv2:0.15
-
cpe:2.3:a:exiv2:exiv2:0.16
-
cpe:2.3:a:exiv2:exiv2:0.17
-
cpe:2.3:a:exiv2:exiv2:0.17.1
-
cpe:2.3:a:exiv2:exiv2:0.18
-
cpe:2.3:a:exiv2:exiv2:0.18.1
-
cpe:2.3:a:exiv2:exiv2:0.18.2
-
cpe:2.3:a:exiv2:exiv2:0.19
-
cpe:2.3:a:exiv2:exiv2:0.20
-
cpe:2.3:a:exiv2:exiv2:0.21
-
cpe:2.3:a:exiv2:exiv2:0.21.1
-
cpe:2.3:a:exiv2:exiv2:0.22
-
cpe:2.3:a:exiv2:exiv2:0.23
-
cpe:2.3:a:exiv2:exiv2:0.24
-
cpe:2.3:a:exiv2:exiv2:0.25
-
cpe:2.3:a:exiv2:exiv2:0.3
-
cpe:2.3:a:exiv2:exiv2:0.4
-
cpe:2.3:a:exiv2:exiv2:0.5
-
cpe:2.3:a:exiv2:exiv2:0.6
-
cpe:2.3:a:exiv2:exiv2:0.6.1
-
cpe:2.3:a:exiv2:exiv2:0.6.2
-
cpe:2.3:a:exiv2:exiv2:0.7
-
cpe:2.3:a:exiv2:exiv2:0.8
-
cpe:2.3:a:exiv2:exiv2:0.9
-
cpe:2.3:a:exiv2:exiv2:0.9.1