CVE-2023-50671
HIGHexiftags 1.01 - Heap-Based Buffer Overflow in nikon_prop1
Title source: llmDescription
In exiftags 1.01, nikon_prop1 in nikon.c has a heap-based buffer overflow (write of size 28) because snprintf can write to an unexpected address.
References (2)
Core 2
Core References
Exploit, Third Party Advisory
https://blog.yulun.ac.cn/posts/2023/fuzzing-exiftags/
Product
https://johnst.org/sw/exiftags/
Scores
CVSS v3
7.8
EPSS
0.0036
EPSS Percentile
28.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-787
Status
published
Products (1)
aertherwide/exiftags
1.01
Published
Jan 11, 2024
Tracked Since
Feb 18, 2026