Lucene search
GoogleOSV:USN-6814-1HistoryJun 06, 2024 - 4:43 p.m.
libvpx vulnerability
2024-06-0616:43:22
Google
osv.dev
8
libvpx
vulnerability
denial of service
code execution
xiantong hou
media files
remote attacker
CVSS4
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
PASSIVE
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:L/SC:L/VI:H/SI:L/VA:N/SA:N
AI Score
7.3
Confidence
High
EPSS
0
Percentile
9.0%
Xiantong Hou discovered that libvpx did not properly handle certain
malformed media files. If an application using libvpx opened a specially
crafted file, a remote attacker could cause a denial of service, or
possibly execute arbitrary code.
Related
osv
osv
libvpx - security update
2024-06-16 00:00:00
libvpx - security update
2024-06-26 00:00:00
libvpx-devel-1.14.1-1.1 on GA media
2024-07-04 00:00:00
veracode
veracode
Integer Overflow
2024-06-06 07:31:15
openvas
openvas
Debian: Security Advisory (DLA-3830-1)
2024-07-01 00:00:00
Debian: Security Advisory (DSA-5722-1)
2024-07-01 00:00:00
Mageia: Security Advisory (MGASA-2024-0221)
2024-06-17 00:00:00
mageia
mageia
Updated libvpx packages fix security vulnerabilities
2024-06-14 20:30:25
vulnrichment
vulnrichment
CVE-2024-5197 Integer overflow in libvpx
2024-06-03 13:30:26
nessus
nessus
Debian dla-3830 : libvpx-dev - security update
2024-06-16 00:00:00
Amazon Linux 2 : firefox (ALASFIREFOX-2024-028)
2024-08-21 00:00:00
cvelist
cvelist
CVE-2024-5197 Integer overflow in libvpx
2024-06-03 13:30:26
alpinelinux
alpinelinux
CVE-2024-5197
2024-06-03 14:15:09
ubuntu
ubuntu
libvpx vulnerability
2024-06-06 00:00:00
cloudfoundry
cloudfoundry
USN-6814-1: libvpx vulnerability | Cloud Foundry
2024-07-25 00:00:00
redhatcve
redhatcve
CVE-2024-5197
2024-06-12 00:48:15
nvd
nvd
CVE-2024-5197
2024-06-03 14:15:09
debiancve
debiancve
CVE-2024-5197
2024-06-03 14:15:09
cve
cve
CVE-2024-5197
2024-06-03 14:15:09
almalinux
almalinux
Moderate: libvpx security update
2024-08-28 00:00:00
ubuntucve
ubuntucve
CVE-2024-5171
2024-06-04 00:00:00
CVE-2024-5197
2024-06-03 00:00:00
redhat
redhat
(RHSA-2024:5941) Moderate: libvpx security update
2024-08-28 15:26:38
oraclelinux
oraclelinux
libvpx security update
2024-08-28 00:00:00
rocky
rocky
libvpx security update
2024-09-17 00:54:54
redos
redos
ROS-20240718-04
2024-07-18 00:00:00
CVSS4
5.9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
PASSIVE
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:L/SC:L/VI:H/SI:L/VA:N/SA:N
AI Score
7.3
Confidence
High
EPSS
0
Percentile
9.0%
Related for OSV:USN-6814-1