piexif@1.0.4 vulnerabilities

To simplify exif manipulations with python. Writing, reading, and more...

Direct Vulnerabilities

Known vulnerabilities in the piexif package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Arbitrary File Read

piexif is a package intended to simplify exif manipulations with Python. Writing, reading, and more…

Affected versions of this package are vulnerable to Arbitrary File Read due to missing sanitization in piexif.load which accepts both filenames and raw data, leading to a possible file read.

How to fix Arbitrary File Read?

There is no fixed version for piexif.

[0,)