← Zuruck zu CVEs
CVE-2026-40386
MEDIUM4.0
Beschreibung
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote decoding could be used by attackers to crash or leak information out of libexif-using programs.
CVE Details
CVSS v3.1 Bewertung4.0
SchweregradMEDIUM
CVSS VektorCVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
AngriffsvektorLOCAL
KomplexitatHIGH
Erforderliche PrivilegienNONE
BenutzerinteraktionNONE
Veroffentlicht4/12/2026
Zuletzt geandert4/14/2026
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
libexif_project:libexif
Schwachen (CWE)
CWE-191
Referenzen
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.