CVE-2026-40385: In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attacke

Description

In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems.

Affected Products

Vendor	Product	Versions
libexif	libexif	0

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
open source	libexif	cert_advisory	90%

References

https://github.com/libexif/libexif/commit/93003b93e50b3d259bd2227d8775b73a53c35d58

Related News (2 articles)

Tier B

BSI Advisories2h ago

[NEU] [niedrig] libexif: Mehrere Schwachstellen ermöglichen Denial of Service und Offenlegung von Informationen

→ No new info (linked only)

Tier C

VulDB18h ago

CVE-2026-40385 | libexif up to 0.6.25 Nikon MakerNote integer overflow

→ No new info (linked only)

CVSS 3.14.0 CRITICAL

VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

CISA KEV❌ No

Actively exploited✅ Yes

CWECWE-190

PublishedApr 12, 2026

Last enriched17h agov2

Trending Score61

Source articles2

Independent2

Info Completeness8/14

Missing: epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

Version History

Last enriched 17h ago

v2Tier C17h ago

Updated severity to CRITICAL, marked as actively exploited, and corrected exploit availability to false.

severityactivelyExploited

via VulDB

v119h ago

Initial creation