CVE-2021-37618— Out-of-bounds read in Exiv2::Jp2Image::printStructure
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-37618
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Out-of-bounds read in Exiv2::Jp2Image::printStructure
Source: NVD (National Vulnerability Database)
Vulnerability Description
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used to print the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a crafted image file. Note that this bug is only triggered when printing the image ICC profile, which is a less frequently used Exiv2 operation that requires an extra command line option (`-p C`). The bug is fixed in version v0.27.5.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存读
Source: NVD (National Vulnerability Database)
Vulnerability Title
Exiv2 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Exiv2是Andreas Huggel个人开发者的一套用于管理图像元数据的C++库和命令行应用程序。该产品提供了读取和写入EXIF、IPTC和XMP等多种格式图像元数据的功能。 Exiv2 中存在缓冲区错误漏洞,该漏洞源于产品在打印图片文件时未能验证数据边界,攻击者可通过特殊的图像文件引发越界读操作进而导致拒绝服务。以下产品及版本受到影响:Exiv2 v0.27.4 版本及之前版本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2021-37618
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-37618
请登录查看更多情报信息。
- https://github.com/Exiv2/exiv2/pull/1759x_refsource_MISC
- https://security.gentoo.org/glsa/202312-06vendor-advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UYGDELIFFJWKUU7SO3QATCIXCZJERGAC/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FMDT4PJB7P43WSOM3TRQIY3J33BAFVVE/vendor-advisoryx_refsource_FEDORA
- https://nvd.nist.gov/vuln/detail/CVE-2021-37618
Same Patch Batch · Exiv2 · 2021-08-09 · 11 CVEs total
| CVE-2021-32815 | 5.5 MEDIUM | Denial of service due to assertion failure in crwimage_int.cpp |
| CVE-2021-34334 | 5.5 MEDIUM | Denial of service due to integer overflow in loop counter |
| CVE-2021-37616 | 5.5 MEDIUM | Null pointer dereference in Exiv2::Internal::resolveLens0x8ff |
| CVE-2021-37621 | 5.5 MEDIUM | Denial of service due to infinite loop in Image::printIFDStructure |
| CVE-2021-37622 | 5.5 MEDIUM | Denial of service due to infinite loop in JpegBase::printStructure (#1) |
| CVE-2021-37623 | 5.5 MEDIUM | Denial of service due to infinite loop in JpegBase::printStructure (#2) |
| CVE-2021-34335 | 4.7 MEDIUM | Denial of service due to FPE in Exiv2::Internal::resolveLens0xffff |
| CVE-2021-37615 | 4.7 MEDIUM | Null pointer dereference in Exiv2::Internal::resolveLens0x319 |
| CVE-2021-37619 | 4.7 MEDIUM | Out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header |
| CVE-2021-37620 | 4.7 MEDIUM | Out-of-bounds read in XmpTextValue::read() |
IV. Related Vulnerabilities
Same product: exiv2
- CVE-2026-25884
Exiv2: Out-of-bounds read in CrwMap::decode0x0805 - CVE-2026-27596
Exiv2: Integer Underflow in LoaderNative::getData() Causes H - CVE-2026-27631
Exiv2: Uncaught exception - cannot create std::vector larger - CVE-2025-55304
Exiv2 has quadratic performance in ICC profile parsing in Jp - CVE-2025-54080
Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata(
Same vendor: Exiv2
- CVE-2026-25884
Exiv2: Out-of-bounds read in CrwMap::decode0x0805 - CVE-2026-27596
Exiv2: Integer Underflow in LoaderNative::getData() Causes H - CVE-2026-27631
Exiv2: Uncaught exception - cannot create std::vector larger - CVE-2025-55304
Exiv2 has quadratic performance in ICC profile parsing in Jp - CVE-2025-54080
Exiv2 Segmentation Faults in Exiv2::EpsImage::writeMetadata(
Same weakness: CWE-125
- CVE-2026-8177
XML::LibXML versions through 2.0210 for Perl read out-of-bou - CVE-2026-6104
Global buffer over-read in mb_convert_encoding() with attack - CVE-2026-7258
Out-of-bounds read in urldecode() on NetBSD - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-3508
ASUS System Control Interface 缓冲区错误漏洞
V. Comments for CVE-2021-37618
No comments yet