cpe:/a:exiv2:exiv2:0.3 cpe:/a:exiv2:exiv2:0.4 cpe:/a:exiv2:exiv2:0.5 cpe:/a:exiv2:exiv2:0.6 cpe:/a:exiv2:exiv2:0.6.1 cpe:/a:exiv2:exiv2:0.6.2 cpe:/a:exiv2:exiv2:0.7 cpe:/a:exiv2:exiv2:0.8 cpe:/a:exiv2:exiv2:0.9 cpe:/a:exiv2:exiv2:0.9.1 cpe:/a:exiv2:exiv2:0.10 cpe:/a:exiv2:exiv2:0.11 cpe:/a:exiv2:exiv2:0.12 cpe:/a:exiv2:exiv2:0.13 cpe:/a:exiv2:exiv2:0.14 cpe:/a:exiv2:exiv2:0.15 cpe:/a:exiv2:exiv2:0.16:- cpe:/a:exiv2:exiv2:0.16:pre1 cpe:/a:exiv2:exiv2:0.17 cpe:/a:exiv2:exiv2:0.17.1 cpe:/a:exiv2:exiv2:0.18:- cpe:/a:exiv2:exiv2:0.18:pre1 cpe:/a:exiv2:exiv2:0.18:pre2 cpe:/a:exiv2:exiv2:0.18.1 cpe:/a:exiv2:exiv2:0.18.2 cpe:/a:exiv2:exiv2:0.19 cpe:/a:exiv2:exiv2:0.20 cpe:/a:exiv2:exiv2:0.21 cpe:/a:exiv2:exiv2:0.21.1 cpe:/a:exiv2:exiv2:0.22 cpe:/a:exiv2:exiv2:0.23 cpe:/a:exiv2:exiv2:0.24 cpe:/a:exiv2:exiv2:0.25 cpe:/a:exiv2:exiv2:0.26 cpe:/a:exiv2:exiv2:0.27:- cpe:/a:exiv2:exiv2:0.27:rc1 cpe:/a:exiv2:exiv2:0.27:rc2 cpe:/a:exiv2:exiv2:0.27:rc3 cpe:/a:exiv2:exiv2:0.27.1 CVE-2019-14982 2019-08-12T19:15:11.663-04:00 2019-08-16T10:16:30.087-04:00 4.3 NETWORK MEDIUM NONE NONE NONE PARTIAL http://nvd.nist.gov 2019-08-16T08:30:10.577-04:00 MISC https://github.com/Exiv2/exiv2/compare/v0.27.2-RC2...v0.27.2 MISC https://github.com/Exiv2/exiv2/issues/960 MISC https://github.com/Exiv2/exiv2/pull/962/commits/e925bc5addd881543fa503470c8a859e112cca62 In Exiv2 before v0.27.2, there is an integer overflow vulnerability in the WebPImage::getHeaderOffset function in webpimage.cpp. It can lead to a buffer overflow vulnerability and a crash.