Potential Denial of Service in Imager Product by TonyCoz
CVE-2026-14454
Currently unrated
What is CVE-2026-14454?
The Imager library prior to version 1.033 for Perl incorrectly interprets large unsigned EXIF IFD entry counts as negative values. This flaw can trigger an attempt to allocate excessive memory, leading to the termination of the process. By crafting a malicious image with specific EXIF data, an attacker could disrupt service by forcing the worker process to crash, effectively resulting in a Denial of Service condition.
Affected Version(s)
Imager 0 < 1.033
