Primary

Context

libexif Integer Underflow Vulnerability in MakerNote Decoding for Fuji and Olympus

Vulnerability

Patched

An integer underflow vulnerability has been identified in libexif versions through 0.6.25. This issue arises in the size checking process for MakerNote decoding specific to Fuji and Olympus cameras. Attackers could exploit this vulnerability to cause crashes or leak information from programs that use libexif.

Impact

Exploitation of this vulnerability could lead to crashes or unintended information disclosure from applications that utilize libexif.

Remediation

Users can update to the latest version of libexif to address this vulnerability.

Added: Apr 12, 2026, 7:19 PM

Updated: Apr 12, 2026, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

3.1

exploitability

5.3

remediation

7.7

relevance

5.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

3.1

exploitability

5.3

remediation

7.7

relevance

5.7

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

libexif Integer Underflow Vulnerability in MakerNote Decoding for Fuji and Olympus

Vulnerability

Impact

Remediation

Affected Products

libexif

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating