CVE-2022-24614 in metadata-extractorthông tin

Tóm tắt

Bởi MITRE • 24/02/2022

When reading a specially crafted JPEG file, metadata-extractor up to 2.16.0 can be made to allocate large amounts of memory that finally leads to an out-of-memory error even for very small inputs. This could be used to mount a denial of service attack against services that use metadata-extractor library.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Đặt trước

07/02/2022

Tiết lộ

24/02/2022

Kiểm duyệt

được chấp nhận

EPSS

0.00717

KEV

không

Các hoạt động

rất thấp

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!