{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T18:20:27.329","vulnerabilities":[{"cve":{"id":"CVE-2013-1438","sourceIdentifier":"security@debian.org","published":"2014-01-19T18:02:56.600","lastModified":"2026-06-16T23:51:26.190","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference."},{"lang":"es","value":"Vulnerabilidad no especificada en dcraw 0.8.x hasta 0.8.9, utilizado en libraw, ufraw, shotwell y otros productos, permite a atacantes dependientes de contexto causar una denegación de servicio a través de un archivo fotográfico manipulado que desencadena un (1) divide-by-zero, (2) bucle infinito, o (3) referencia a puntero nulo."}],"affected":[{"source":"security@debian.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.0:*:*:*:*:*:*:*","matchCriteriaId":"3F5B8F8B-571F-4E99-8796-C1FB51F17B5E"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.1:*:*:*:*:*:*:*","matchCriteriaId":"E2E58321-D1BB-4F79-AAB2-9A6AF74DC7DD"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.2:*:*:*:*:*:*:*","matchCriteriaId":"9126BA52-8261-4AF6-B086-EDD1FEF76781"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.3:*:*:*:*:*:*:*","matchCriteriaId":"935C59A2-3BF9-4BF9-914F-313944C29419"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.4:*:*:*:*:*:*:*","matchCriteriaId":"4E6B6F87-582A-4CA7-8FB6-1046FF5A7EF9"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.5:*:*:*:*:*:*:*","matchCriteriaId":"98DD84BC-C49B-4591-848F-EE1331889A6F"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.6:*:*:*:*:*:*:*","matchCriteriaId":"849AB4DD-7512-4513-BAFD-06A42900B4CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.7:*:*:*:*:*:*:*","matchCriteriaId":"93AC4C73-3EE0-439E-821F-3FEA44189AC3"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.8:*:*:*:*:*:*:*","matchCriteriaId":"A921C503-7B44-421F-9AF0-0BD2BE05BA34"},{"vulnerable":true,"criteria":"cpe:2.3:a:dave_coffin:dcraw:0.8.9:*:*:*:*:*:*:*","matchCriteriaId":"ACDC079C-306F-4A91-A892-9DD23CA03C5F"}]}]}],"references":[{"url":"http://www.debian.org/security/2013/dsa-2748","source":"security@debian.org"},{"url":"http://www.openwall.com/lists/oss-security/2013/08/29/3","source":"security@debian.org"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"security@debian.org"},{"url":"http://www.securityfocus.com/bid/62060","source":"security@debian.org"},{"url":"http://www.debian.org/security/2013/dsa-2748","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2013/08/29/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/62060","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}