Lucene search
K

163 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2017-11645

Malware in sbrugna...

7.8CVSS8.6AI score0.01729EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-15880

Malware in sbrugna...

7.8CVSS8.6AI score0.01581EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-16053

Malware in sbrugna...

7.8CVSS8.7AI score0.01036EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-5808

Malware in sbrugna...

4.3CVSS4.9AI score0.02244EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-6565

Malware in sbrugna...

2.6CVSS6.4AI score0.00523EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-7103

Malicious code in bioql PyPI...

8.2CVSS8.3AI score0.0067EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/09/08 8:5 a.m.5 views

thunderbird: firefox: Sandbox escape due to invalid pointer in the Audio/Video: GMP component

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: An attacker is able to perform memory corruption in the GMP process which process encrypted media. This process is also heavily sandboxed, but represents slightly different...

9.8CVSS7.3AI score0.0053EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 3:6 a.m.4 views

CVE-2023-20785

In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628524; Issue ID: ALPS07628524...

6.4CVSS6.6AI score0.00065EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:1 a.m.4 views

CVE-2023-21655

Memory corruption in Audio while validating and mapping metadata...

7.8CVSS7.1AI score0.00109EPSS
Exploits0References1
Snyk
Snyk
added 2025/03/20 12:32 p.m.5 views

Arbitrary File Write via Archive Extraction (Zip Slip)

Overview gradio is a Python library for easily interacting with trained machine learning models Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction Zip Slip via the Audio component. An attacker can delete arbitrary file content by manipulating the outpu...

8.8CVSS7.9AI score0.0067EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2025/03/20 12:32 p.m.9 views

Gradio Vulnerable to Arbitrary File Deletion

A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset...

8.2CVSS6.9AI score0.0067EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/03/20 10:15 a.m.5 views

CVE-2024-10648

A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset...

8.2CVSS0.0067EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/20 10:11 a.m.9 views

CVE-2024-10648 Path Traversal in gradio-app/gradio

A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset...

8.2CVSS0.0067EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/20 10:11 a.m.6 views

CVE-2024-10648 Path Traversal in gradio-app/gradio

A path traversal vulnerability exists in the Gradio Audio component of gradio-app/gradio, as of version git 98cbcae. This vulnerability allows an attacker to control the format of the audio file, leading to arbitrary file content deletion. By manipulating the output format, an attacker can reset...

8.2CVSS8AI score0.0067EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:11 a.m.45 views

CVE-2024-10648

CVE-2024-10648 describes a path traversal vulnerability in the Gradio Audio component of gradio-app/gradio, present in version git 98cbcae. The underlying issue allows an attacker to control the audio file format and delete arbitrary file content by manipulating the output format, potentially res...

8.2CVSS7AI score0.0067EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.5 views

Gradio 安全漏洞

Gradio is an open source Python library from Gradio Open Source, a method for demonstrating machine learning models through a friendly web interface. A security vulnerability exists in Gradio version 98cbcae, which stems from a path traversal vulnerability in the Gradio Audio component, which...

8.2CVSS8.1AI score0.0067EPSS
Exploits1References1
CNVD
CNVD
added 2024/12/17 12:0 a.m.3 views

Elevation of Privilege Vulnerability in Multiple Apple Products (CNVD-2025-19516)

Apple macOS Sequoia is an operating system from Apple in the U.S. Apple macOS Ventura is a desktop operating system from Apple in the U.S. Apple macOS Sonoma is an operating system from Apple. An elevation of privilege vulnerability exists in multiple Apple products and is caused due to a logic...

7.8CVSS7.2AI score0.00333EPSS
Exploits2References1
BDU FSTEC
BDU FSTEC
added 2024/08/09 12:0 a.m.5 views

The vulnerability of the Audio component in Google Chrome and Microsoft Edge browsers allows a perpetrator to gain unauthorized access to protected information, execute arbitrary code, or cause a service failure.

The vulnerability of the Audio component in Google Chrome and Microsoft Edge relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information, execute arbitrary code, or cause a service...

10CVSS7.8AI score0.00461EPSS
Exploits1References13Affected Software7
BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.7 views

The vulnerability of the Audio component in Microsoft Edge and Google Chrome browsers allows attackers to disclose protected information.

The vulnerability of the Audio component in Microsoft Edge and Google Chrome lies in the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to expose sensitive information through specially created PDF files...

7.8CVSS7.6AI score0.00458EPSS
Exploits0References14Affected Software7
Positive Technologies
Positive Technologies
added 2024/06/11 12:0 a.m.5 views

PT-2024-4244 · Google +6 · Google Chrome +6

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 126.0.6478.54 Microsoft Edge affected versions not specified Description: The issue is related to a use after free in the Audio component, which could allow a remote attacker to exploit heap corruption via a...

9.8CVSS6.9AI score0.99735EPSS
Exploits129References1157
Rows per page
Query Builder