Lucene search
K

80 matches found

CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.GPAC Project on Advanced Content is vulnerable to an integer overflow vulnerability that originates from an...

8.8CVSS6.1AI score0.01695EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.01703EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

GPAC 输入验证错误漏洞

GPAC Project Advanced Content is an implementation of the MPEG-4 system standard, written in ANSI C. An integer overflow vulnerability exists in GPAC Project on Advanced Content, which stems from an unchecked algorithm and can be exploited by remote attackers to cause a heap buffer overflow,...

8.8CVSS6.1AI score0.01695EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project Advanced Content is an implementation of the MPEG-4 system standard, written in ANSI C. An integer overflow vulnerability exists in GPAC Project on Advanced Content, which stems from an unchecked algorithm and can be exploited by remote attackers to cause a heap buffer overflow,...

8.8CVSS6.1AI score0.01695EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.6 views

GPAC 输入验证错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.The MPEG-4 decoding feature of GPAC Project on Advanced Content library 1.0.1 suffers from an integer...

8.8CVSS5.8AI score0.01601EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.0201EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC is an open source multimedia framework. a security vulnerability exists in GPAC Project Advanced Content, which stems from the failure of the product's MPEG-4 to check the correctness of additive operations. An attacker could cause memory corruption through this vulnerability...

8.8CVSS5.7AI score0.01695EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC is an open source multimedia framework. a buffer overflow vulnerability exists in GPAC Project Advanced Content, which stems from the product's MPEG-4 failure to check the validity of arithmetic results. An attacker could cause memory corruption through this vulnerability...

8.8CVSS6.1AI score0.01695EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.0201EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

GPAC Project Advanced Content 安全漏洞

A security vulnerability exists in the MPEG-4 decoding functionality of the GPAC project on Advanced Content library v1.0.1, an open source multimedia framework. The vulnerability stems from the handling of the "hdlr" FOURCC code, where a carefully constructed MPEG-4 input could lead to incorrect...

8.8CVSS6AI score0.01632EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC is an open source multimedia framework. a security vulnerability exists in the MPEG-4 decoding feature of GPAC on Advanced Content library v1.0.1. An attacker could exploit the vulnerability to cause incorrect memory allocation via a carefully constructed MPEG-4 input, which could lead to a...

8.8CVSS6AI score0.0143EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

GPAC Project Advanced Content 缓冲区错误漏洞

A security vulnerability exists in GPAC Project Advanced Content, an open source multimedia framework, which stems from multiple exploitable integer overflow vulnerabilities in the MPEG-4 decoding functionality of Advanced Content. A specially crafted MPEG-4 file input could cause an integer...

8.8CVSS6AI score0.01656EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.6 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.02019EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.3 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.01695EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.16 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.0201EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.01972EPSS
Exploits1References7
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project Advanced Content is an implementation of the MPEG-4 system standard, written in ANSI C. An integer overflow vulnerability exists in GPAC Project on Advanced Content, which stems from an unchecked algorithm and can be exploited by remote attackers to cause a heap buffer overflow,...

8.8CVSS6.1AI score0.01695EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.6 views

GPAC Project Advanced Content 缓冲区错误漏洞

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS6AI score0.01695EPSS
Exploits1References6
Veracode
Veracode
added 2017/05/29 7:29 a.m.8 views

Cross-site Scripting (XSS)

ckeditor-dev is vulnerable to cross-site scripting XSS attacks. A malicious user can inject and execute arbitrary javascript via the src attribute in the iframe element. This can only occur when the Iframe plugin is used and advanced content filter is turned off in a browser...

6AI score
Exploits0
Veracode
Veracode
added 2017/05/29 7:5 a.m.10 views

Cross-site Scripting (XSS)

ckeditor-dev is vulnerable to cross-site scripting XSS attacks. A malicious user can inject and execute arbitrary javascript via the srcdoc attribute in the iframe element. This attack can only happen with the Iframe plugin and Advanced Content Filter turned off...

6.1AI score
Exploits0
Rows per page
Query Builder