2 matches found
Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in file-type-16.5.4.tgz
Summary IBM Watson Discovery Cartridge affected by vulnerability in file-type-16.5.4.tgz Vulnerability Details CVEID:CVE-2026-31808 DESCRIPTION: file-type detects the file type of a file, stream, or data. Prior to 21.3.1, a denial of service vulnerability exists in the ASF WMV/WMA file type...
CVE-2026-31808
A flaw was found in file-type, a library for detecting file types. A remote attacker can exploit this by providing a specially crafted ASF Advanced Systems Format file. When parsing the file, a zero-sized sub-header can trigger an infinite loop, leading to a Denial of Service DoS. This can stall...