Integer Overflow Vulnerability in Exiv2 0.26's LoaderExifJpeg Class

Integer Overflow Vulnerability in Exiv2 0.26's LoaderExifJpeg Class

CVE-2018-12265 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.

Learn more about our Web Application Penetration Testing UK.