CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...

openSUSE Security Advisory (openSUSE-SU-2025:0039-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : stb (openSUSE-SU-2025:0039-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0039-1 advisory. Addressing the follow security issues boo1216478: CVE-2019-13217: heap buffer overflow in startdecoder CVE-2019-13218: stack buffer overflow in...

CVE-2024-13222

The User Messages WordPress plugin through 1.2.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2024-13222 User Messages <= 1.2.4 - Reflected XSS

The User Messages WordPress plugin through 1.2.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2024-13222

The CVE-2024-13222 case concerns the WordPress User Messages plugin (versions up to 1.2.4). The issue is a reflected XSS caused by insufficient sanitization/escaping of a parameter before it is output on the page. Impact is described as enabling the attacker to run scripts in the context of high-...

CVE-2020-13222

CVE-2020-13222 entry is rejected/not used and does not represent an active vulnerability.

CVE-2020-13222

...

CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...

UBUNTU-CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...

CVE-2019-13222

CVE-2019-13222 affects the stb_vorbis draw_line() path in the stb library (stb_vorbis) with an out-of-range read caused by an unchecked NULL returned by get_window(). The public records in connected docs show this is addressed by vendor updates (e.g., openSUSE-SU-2025:0039-1 for stb, Debian DLA-3...

CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...

CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...

CVE-2018-13222

The vulnerability CVE-2018-13222 affects ObjectToken (OBJ), an Ethereum token. The sell function in its smart contract allows an integer overflow where evaluating amount * sellPrice can yield zero, thereby reducing the seller’s assets. Concrete details across connected sources confirm the affecte...

CVE-2017-13222

An information disclosure vulnerability in the Upstream kernel kernel. Product: Android. Versions: Android kernel. Android ID: A-38159576...

CVE-2017-13222

CVE-2017-13222 is an information-disclosure vulnerability in the Android Upstream/kernel layer affecting the Android kernel. The connected records confirm it is a kernel/Upstream information disclosure issue (Android ID A-38159576) with no public exploitation details provided in the documents. Th...