VYPR
Unrated severityNVD Advisory· Published Oct 9, 2019· Updated Aug 5, 2024

CVE-2019-17402

CVE-2019-17402

Description

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

33

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.