CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

Snyk•added 2026/05/18 2:14 p.m.•4 views

Malicious Package

Overview clementine-sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.8AI score

Exploits0References2

OSSF Malicious Packages•added 2026/05/17 1:52 a.m.•7 views

Malicious code in clementine-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24a589617ff547a464cb26e7d9a5675151e221ab5d144088fbc60cb0fbe41135 The package clementine-sdk was found to contain malicious code. Source: ghsa-malware aee6ab0f050d475e499cb88539f229969e72affe6313b116693e5da3fa7c7a4c...

5.8AI score

Exploits0References1

OSV•added 2026/05/17 1:52 a.m.•2 views

MAL-2026-3822 Malicious code in clementine-sdk (npm)

5.8AI score

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-6254

Malware in sbrugna...

5.5CVSS5.3AI score0.00158EPSS

Exploits1References7

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-27987

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00368EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-27988

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00368EPSS

Exploits1References3

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-40826

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Clementine Music Player through 1.3.1 is vulnerable to a User Mode Write Access Violation, affecting the MP3 file parsing functionality at clementine+0x3aa207...

7.8CVSS7.7AI score0.00368EPSS

Exploits1References3

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-50986

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file. CVE-2024-50986 Note that Nessus relies on the presence ...

7.3CVSS6.2AI score0.10855EPSS

Exploits2References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2021-40827

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Clementine Music Player through 1.3.1 when a GLib 2.0.0 DLL is used is vulnerable to a Read Access Violation on Block Data Move, affecting the MP3 file parsing...

7.8CVSS7.7AI score0.00368EPSS

Exploits1References3

Tenable Nessus•added 2025/08/25 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-14332

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Clementine Music Player 1.3.1. Clementine.exe is vulnerable to a user mode write access violation due to a NULL pointer dereference i...

5.5CVSS6.1AI score0.00158EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 8:32 a.m.•3 views

CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.3CVSS7.4AI score0.10855EPSS

Exploits2References1

SUSE CVE•added 2024/11/19 3:48 a.m.•1 views

SUSE CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.3CVSS7.6AI score0.10855EPSS

Exploits2References3

NVD•added 2024/11/15 3:15 p.m.•10 views

CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.3CVSS0.10855EPSS

Exploits2References3

OSV•added 2024/11/15 3:15 p.m.•3 views

CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.3CVSS7.2AI score0.10855EPSS

Exploits2References3

OSV•added 2024/11/15 3:15 p.m.•1 views

UBUNTU-CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.3CVSS6.2AI score0.10855EPSS

Exploits2References5

CVE•added 2024/11/15 12:0 a.m.•52 views

CVE-2024-50986

CVE-2024-50986 affects Clementine v1.3.1 and is exploitable via a local DLL hijacking/vector in Windows. A concrete PoC from a GitHub exploit shows that placing a crafted QUSEREX.DLL in C:\Users\AppData\Local\Microsoft\WindowsApps allows Clementine to load the malicious DLL at startup, enabling a...

7.3CVSS7.7AI score0.10855EPSS

Exploits2References3Affected Software1

Debian CVE•added 2024/11/15 12:0 a.m.•9 views

CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.3CVSS5.8AI score0.10855EPSS

Exploits2

Cvelist•added 2024/11/15 12:0 a.m.•14 views

CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

0.10855EPSS

Exploits2References3

Vulnrichment•added 2024/11/15 12:0 a.m.•16 views

CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

7.5AI score0.10855EPSS

Exploits2References3

CNNVD•added 2024/11/15 12:0 a.m.•3 views

Clementine 安全漏洞

Clementine is a multi-platform music player from the Clementine open source. A security vulnerability exists in Clementine v1.3.1, which originated from a vulnerability that allows local attackers to execute arbitrary code via a crafted DLL file...

7.3CVSS7AI score0.10855EPSS

Exploits2References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by