CVE-2020-13114
HIGH7.5EPSS 1.1%Published: 5/21/2020Modified: 11/19/2025
Also known as:ALPINE-CVE-2020-13114DEBIAN-CVE-2020-13114
Description
An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
Affected packages (2)
- Alpine/libexiffrom 0, < 0.6.22-r0
- Debian/libexiffrom 0, < 0.6.21-9
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |