Description
exif_process_IFD_in_MAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG file.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-2433 Vulnerability (CVE-2013-2433)
PostgreSQL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2020-25694)
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8419)
Nginx Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-4041)