Xiao

Name of the Vulnerable Software and Affected Versions: Exempi version 2.4.5 Description: The issue is related to a NULL pointer dereference error in the WEBP::GetLE32 function, located in XMPFiles/source/FormatSupport/WEBP Support.hpp. This could allow a remote attacker to cause a denial of service. Recommendations: For Exempi version 2.4.5, consider disabling the `WEBP::GetLE32` function as a temporary workaround until a patch is available. Restrict access to the `WEBP Support.hpp` module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.