Primary

Context

libexif Nikon MakerNote Handling Integer Overflow Vulnerability

Vulnerability

Patched

A vulnerability has been identified in libexif versions through 0.6.25, specifically in the handling of Nikon MakerNotes. This issue involves an unsigned 32-bit integer overflow that could be exploited by local attackers on 32-bit systems, potentially leading to crashes or information leaks.

Impact

Exploitation of this vulnerability could cause application crashes or unauthorized information disclosure.

Remediation

Users can update to libexif version 0.6.25 or later, where this vulnerability has been addressed.

Added: Apr 12, 2026, 7:19 PM

Updated: Apr 12, 2026, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

3.1

exploitability

3.1

remediation

7.7

relevance

5.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

3.1

exploitability

3.1

remediation

7.7

relevance

5.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

libexif Nikon MakerNote Handling Integer Overflow Vulnerability

Vulnerability

Impact

Remediation

Affected Products

libexif

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating