Sign In

CVE-2005-0406

SOURCE - nist

Summary

A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image.

EPSS Score: 0.00046 (0.155)

Common Weakness Enumeration (CWE)

SOURCE - nist

CWE-212

Improper Removal of Sensitive Information Before Storage or Transfer

Sources (4)

Impacted images

debian

CREATED

UPDATED

SOURCE IDCVE-2005-0406
EXPLOITABILITY SCORE

-

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow
PackageTypeOS NameOS VersionAffected RangesFix Versions
debian/imagemagickdebdebian12>=8:6.9.11.60+dfsg-1.6Not yet available
debian/imagemagickdebdebian11>=8:6.9.11.60+dfsg-1.3+deb11u2Not yet available
debian/imagemagickdebdebian10>=8:6.9.10.23+dfsg-2.1+deb10u1Not yet available
debian/imagemagickdebdebian13>=8:6.9.12.98+dfsg1-5.2Not yet available
debian/imagemagickdebdebianunstable>=8:6.9.12.98+dfsg1-5.2Not yet available

Severity and metrics

No CVSS data available from this source.

nist

CREATED

UPDATED

SOURCE IDCVE-2005-0406
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
COMMON WEAKNESS ENUMERATION (CWE)
CWE-212

CVSS SCORE

5.5medium

ubuntu

CREATED

UPDATED

SOURCE IDCVE-2005-0406
EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND
-
COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

5.5medium

inthewild

CREATED

UPDATED

SOURCE IDCVE-2005-0406
EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-
RATING UNAVAILABLE FROM SOURCE