Lucene search
+L

526 matches found

OSV
OSV
added 2026/05/08 1:11 p.m.4 views

CVE-2026-43310 media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC

In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC For the i.MX8MQ platform, there is a hardware limitation: the g1 VPU and g2 VPU cannot decode simultaneously; otherwise, it will cause below bus error and produ...

5.5CVSS5.9AI score0.00107EPSS
Exploits0References5
OSV
OSV
added 2026/03/30 9:43 p.m.6 views

CVE-2026-33986 FreeRDP: H.264 YUV Buffer Dimension Desync - Heap OOB Write

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and h264-height are updated before the reallocation loop. If any winpralignedrecalloc call fails, the function returns FALSE but width/height are...

7.5CVSS5.8AI score0.00265EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/03/24 12:0 a.m.11 views

Fresh X-NetStat Pro 缓冲区错误漏洞

Fresh X-NetStat Pro is a network connection status monitoring tool developed by Fresh Corporation. Version X-NetStat Pro 5.63 contains a buffer error vulnerability, which stems from a local buffer overflow. This vulnerability could allow local attackers to exploit the overflow in the 264-byte...

8.6CVSS6.5AI score0.00183EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.10 views

PT-2026-27371

X-NetStat Pro 5.63 contains a local buffer overflow vulnerability that allows local attackers to execute arbitrary code by overwriting the EIP register through a 264-byte buffer overflow. Attackers can inject shellcode into memory and use an egg hunter technique to locate and execute the payload...

8.6CVSS6.5AI score0.00183EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/21 3:33 p.m.5 views

EUVD-2019-19882

Valentina Studio 9.0.5 Linux contains a buffer overflow vulnerability in the Host field of the connection dialog that allows local attackers to crash the application by supplying an oversized input string. Attackers can trigger the vulnerability by pasting a crafted buffer exceeding 264 bytes int...

6.9CVSS6.1AI score0.00183EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/03/21 12:47 p.m.29 views

CVE-2019-25567 Valentina Studio 9.0.5 Linux Buffer Overflow via Host Field

Valentina Studio 9.0.5 Linux contains a buffer overflow vulnerability in the Host field of the connection dialog that allows local attackers to crash the application by supplying an oversized input string. Attackers can trigger the vulnerability by pasting a crafted buffer exceeding 264 bytes int...

6.9CVSS0.00183EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/21 12:47 p.m.1 views

CVE-2019-25567 Valentina Studio 9.0.5 Linux Buffer Overflow via Host Field

Valentina Studio 9.0.5 Linux contains a buffer overflow vulnerability in the Host field of the connection dialog that allows local attackers to crash the application by supplying an oversized input string. Attackers can trigger the vulnerability by pasting a crafted buffer exceeding 264 bytes int...

6.9CVSS6.1AI score0.00183EPSS
Exploits1References4
NVD
NVD
added 2026/02/20 1:15 a.m.7 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS0.0029EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/20 1:15 a.m.8 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS6AI score0.0029EPSS
Exploits0References3
OSV
OSV
added 2026/02/20 1:15 a.m.5 views

UBUNTU-CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS6AI score0.0029EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/20 12:26 a.m.7 views

CVE-2026-26967

PJSIP is a free and open source multimedia communication library written in C. In versions 2.16 and below, there is a critical Heap-based Buffer Overflow vulnerability in PJSIP's H.264 unpacketizer. The bug occurs when processing malformed SRTP packets, where the unpacketizer reads a 2-byte NAL...

9.3CVSS5.8AI score0.0029EPSS
Exploits0References3
CVE
CVE
added 2026/02/20 12:26 a.m.40 views

CVE-2026-26967

PJSIP Vulnerability CVE-2026-26967: In 2.16 and earlier, the H.264 unpacketizer can overflow the heap when processing malformed SRTP packets, due to reading a 2-byte NAL unit size without validating bounds within the payload. Affected: PJSIP-based applications handling H.264 video streams. Impact...

9.3CVSS5.8AI score0.0029EPSS
Exploits0References2Affected Software1
Wordfence Blog
Wordfence Blog
added 2026/01/15 4:14 p.m.16 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (January 5, 2026 to January 11, 2026)

Did you know Wordfence runs aBug Bounty Program for all WordPress plugin and themes at no cost to vendors? Researchers can earn up to $31,200 per vulnerability , for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, and we...

9.8CVSS7AI score0.01709EPSS
Exploits7
RedhatCVE
RedhatCVE
added 2026/01/09 11:27 a.m.9 views

CVE-2021-33499

Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation issue 2 of 2...

7.5CVSS7.1AI score0.01245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:48 a.m.15 views

CVE-2022-27937

Pexip Infinity before 27.3 allows remote attackers to trigger excessive resource consumption via H.264...

7.5CVSS7.1AI score0.01098EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.27 views

Beward N100 安全漏洞

Beward N100 is an IP video codec from the Russian open source Beward. A security vulnerability exists in Beward N100 H.264 VGA IP Camera version M2.1.6, which stems from insufficient validation of the READ.filePath parameter and could lead to the disclosure of arbitrary files...

8.8CVSS6.7AI score0.17393EPSS
Exploits1References3
CVE
CVE
added 2025/12/09 8:43 p.m.15 views

CVE-2021-47727

CVE-2021-47727 affects the Selea Targa IP OCR-ANPR Camera. The connected documents provide concrete details: an unauthenticated vulnerability that allows remote attackers to access live video streams by directly connecting to RTP/RTSP or M-JPEG endpoints (notably p1.mjpg and p1.264). This is desc...

8.7CVSS6.7AI score0.00427EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/12/09 8:43 p.m.22 views

CVE-2021-47727 Selea Targa IP Camera Unauthenticated Stream Disclosure

Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage...

8.7CVSS0.00427EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.9 views

PT-2025-50246

Name of the Vulnerable Software and Affected Versions Selea Targa IP OCR-ANPR Camera affected versions not specified Description The Selea Targa IP OCR-ANPR Camera has an issue allowing remote access to live video streams without requiring authentication. Attackers can access these streams by...

8.7CVSS6.6AI score0.00427EPSS
Exploits1References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/05 9:10 p.m.7 views

Malicious code in elf-stats-evergreen-satchel-264 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a0cef2ea5708ca3569d122ccff1c50dae9ea55f7fc05a9dcafbc4481b5c0c13 The package elf-stats-evergreen-satchel-264 was found to contain malicious code...

7AI score
Exploits0
Rows per page
Query Builder