Integer Overflow Vulnerability in Exiv2's WebPImage::getHeaderOffset Function

Integer Overflow Vulnerability in Exiv2's WebPImage::getHeaderOffset Function

CVE-2019-14982 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

In Exiv2 before v0.27.2, there is an integer overflow vulnerability in the WebPImage::getHeaderOffset function in webpimage.cpp. It can lead to a buffer overflow vulnerability and a crash.

Learn more about our Web App Pen Testing.