CVE-2017-18235

An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles/source/FormatSupport/WEBP_Support.cpp does not ensure nonzero widths and heights, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted .webp file.
Configurations

Configuration 1 (hide)

cpe:2.3:a:exempi_project:exempi:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-03-15 19:29

Updated : 2024-02-04 19:46


NVD link : CVE-2017-18235

Mitre link : CVE-2017-18235

CVE.ORG link : CVE-2017-18235


JSON object : View

Products Affected

exempi_project

  • exempi
CWE
CWE-20

Improper Input Validation