6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.6%
An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of Exiv2 0.27 allows attackers to cause a denial of service (DOS) via a crafted input.
cwe.mitre.org/data/definitions/789.html
github.com/Exiv2/exiv2/issues/742
security.gentoo.org/glsa/202312-06