exempi_project CVE Vulnerabilities & Metrics

Focus on exempi_project vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About exempi_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with exempi_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total exempi_project CVEs: 13
Earliest CVE date: 06 Mar 2018, 18:29 UTC
Latest CVE date: 22 Aug 2023, 19:15 UTC

Latest CVE reference: CVE-2020-18652

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): -100.0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): -100.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical exempi_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 3.83

Max CVSS: 6.8

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	2
4.0-6.9	11
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS exempi_project CVEs

These are the five CVEs with the highest CVSS scores for exempi_project, sorted by severity first and recency.

CVE-2017-18234 exempi_project Published on 15 Mar 2018, 19:29 UTC (CVSS: 6.8)
An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp, XMPFiles/source/FormatSupport/TIFF_MemoryReader.cpp, and XMPFiles/source/FormatSupport/TIFF_Support.hpp.
CVE-2018-12648 exempi_project Published on 22 Jun 2018, 13:29 UTC (CVSS: 4.3)
The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.
CVE-2017-18238 exempi_project Published on 15 Mar 2018, 19:29 UTC (CVSS: 4.3)
An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt file.
CVE-2017-18237 exempi_project Published on 15 Mar 2018, 19:29 UTC (CVSS: 4.3)
An issue was discovered in Exempi before 2.4.3. The PostScript_Support::ConvertToDate function in XMPFiles/source/FormatSupport/PostScript_Support.cpp allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted .ps file.
CVE-2017-18236 exempi_project Published on 15 Mar 2018, 19:29 UTC (CVSS: 4.3)
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file.

All CVEs for exempi_project

CVE-2020-18652 exempi_project vulnerability CVSS: 0 22 Aug 2023, 19:15 UTC

Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file.

CVE-2020-18651 exempi_project vulnerability CVSS: 0 22 Aug 2023, 19:15 UTC

Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file with ID3V2 frame.

CVE-2018-12648 exempi_project vulnerability CVSS: 4.3 22 Jun 2018, 13:29 UTC

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.

CVE-2017-18238 exempi_project vulnerability CVSS: 4.3 15 Mar 2018, 19:29 UTC

An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt file.

CVE-2017-18237 exempi_project vulnerability CVSS: 4.3 15 Mar 2018, 19:29 UTC

An issue was discovered in Exempi before 2.4.3. The PostScript_Support::ConvertToDate function in XMPFiles/source/FormatSupport/PostScript_Support.cpp allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted .ps file.

CVE-2017-18236 exempi_project vulnerability CVSS: 4.3 15 Mar 2018, 19:29 UTC

An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file.

CVE-2017-18235 exempi_project vulnerability CVSS: 4.3 15 Mar 2018, 19:29 UTC

An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles/source/FormatSupport/WEBP_Support.cpp does not ensure nonzero widths and heights, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted .webp file.

CVE-2017-18234 exempi_project vulnerability CVSS: 6.8 15 Mar 2018, 19:29 UTC

An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp, XMPFiles/source/FormatSupport/TIFF_MemoryReader.cpp, and XMPFiles/source/FormatSupport/TIFF_Support.hpp.

CVE-2017-18233 exempi_project vulnerability CVSS: 4.3 15 Mar 2018, 19:29 UTC

An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file.

CVE-2018-7731 exempi_project vulnerability CVSS: 4.3 06 Mar 2018, 18:29 UTC

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class.

CVE-2018-7730 exempi_project vulnerability CVSS: 4.3 06 Mar 2018, 18:29 UTC

An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function.

CVE-2018-7729 exempi_project vulnerability CVSS: 4.3 06 Mar 2018, 18:29 UTC

An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp.

CVE-2018-7728 exempi_project vulnerability CVSS: 4.3 06 Mar 2018, 18:29 UTC

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp.