CVE-2026-25884 | exiv2 up to 0.28.7 CrwMap::decode0x0805 out-of-bounds

Inserito da Angelo Barbosa | Mar 2, 2026 | CVE

A vulnerability marked as problematic has been reported in exiv2 up to 0.28.7. Affected by this vulnerability is the function CrwMap::decode0x0805. Performing a manipulation results in out-of-bounds read.

This vulnerability was named CVE-2026-25884. The attack needs to be approached locally. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-25884 | exiv2 up to 0.28.7 CrwMap::decode0x0805 out-of-bounds

Post correlati

CVE-2024-29449 | ROS2 Humble Hawksbill cleartext transmission

CVE-2025-12061 | Tax Service Electronic HDM Plugin up to 1.2.0 on WordPress cross-site request forgery

CVE-2025-47771 | powsybl-core up to 6.7.1 SparseMatrix read deserialization (GHSA-f5cx-h789-j959)

CVE-2025-4037 | code-projects ATM Banking 1.0 moneyDeposit/moneyWithdraw logic error