TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2026-40385

MEDIUM
4.0

Beschreibung

In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems.

CVE Details

CVSS v3.1 Bewertung4.0
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
AngriffsvektorLOCAL
KomplexitatHIGH
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht4/12/2026
Zuletzt geandert4/13/2026
Quellenvd
Honeypot-Sichtungen0

Schwachen (CWE)

CWE-190

Referenzen

https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58(cve@mitre.org)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.