6112 matches found
CVE-2021-41331
Windows Media Audio Decoder Remote Code Execution Vulnerability...
CVE-2021-41331
Windows Media Audio Decoder Remote Code Execution Vulnerability...
Remote code execution
Windows Media Audio Decoder Remote Code Execution Vulnerability...
CVE-2021-41331 Windows Media Audio Decoder Remote Code Execution Vulnerability
...
CVE-2021-41331
CVE-2021-41331 corresponds to a Windows Media Audio Decoder Remote Code Execution Vulnerability. Public documents (NVD/NVD-derived entries) describe impact as remote code execution with high-severity ratings: CVSS 3.1 base score 7.8 (LOCAL ATTACK VECTOR, PRIVILEGES NONE, UI REQUIRED; CONF/I/H = H...
Microsoft Windows Multiple Vulnerabilities (KB5006743)
This host is missing a critical security update according to Microsoft KB5006743 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Windows Media Audio Decoder Remote Code Execution Vulnerability
...
KLA12309 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service. Below is a...
PT-2021-4440 · Microsoft · Windows Media Audio Decoder +1
Name of the Vulnerable Software and Affected Versions: Windows Media Audio Decoder affected versions not specified Description: The issue is related to errors in code generation management in the Windows Media Audio Decoder. It allows remote attackers to execute arbitrary code and affect the...
CVE-2021-3510
Zephyr JSON decoder incorrectly decodes array of array. Zephyr versions = 1.14.0, = 2.5.0 contain Attempt to Access Child of a Non-structure Pointer CWE-588. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-289f-7mw3-2qf4...
CVE-2021-3510
Zephyr JSON decoder incorrectly decodes array of array. Zephyr versions = 1.14.0, = 2.5.0 contain Attempt to Access Child of a Non-structure Pointer CWE-588. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-289f-7mw3-2qf4...
Hardcoded credentials
Zephyr JSON decoder incorrectly decodes array of array. Zephyr versions = 1.14.0, = 2.5.0 contain Attempt to Access Child of a Non-structure Pointer CWE-588. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-289f-7mw3-2qf4...
CVE-2021-3510
CVE-2021-3510 affects Zephyr RTOS with the JSON decoder incorrectly decoding arrays, leading to an Attempt to Access Child of a Non-structure Pointer (CWE-588). The vulnerability is evidenced by multiple sources (NVD entry and related advisories) noting the Zephyr JSON decoder mishandling arrays ...
Zephyr 安全漏洞
Zephyr is an open source, small, scalable, real-time operating system. a security vulnerability exists in Zephyr, which stems from the ZephyrJSON decoder incorrectly decoding arrays. No details of the vulnerability are currently available...
FAAD2 Stack Buffer Overflow Vulnerability (CNVD-2021-89950)
Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. a stack buffer overflow vulnerability exists in the ftypin function in mp4read.c in FAAD2 2.10.0 and earlier versions. An attacker could exploit this vulnerability to execute...
FAAD2 Heap Buffer Overflow Vulnerability (CNVD-2021-89951)
Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. a heap buffer overflow vulnerability exists in the stszin function in mp4read.c in FAAD2 version 2.10.0 and earlier. An attacker could exploit this vulnerability to execute co...
FAAD2 Heap Buffer Overflow Vulnerability (CNVD-2021-89952)
Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. sbrqmfsynthesis64 function in sbrqmf.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability...
SELA null pointer dereference vulnerability (CNVD-2021-73933)
SELA is a lossless audio codec. A null pointer dereference vulnerability exists in the frame::FrameDecoder::process function in framedecoder.c in SELA 20200412 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service...
CVE-2021-39545
An issue was discovered in sela through 20200412. A NULL pointer dereference exists in the function rice::RiceDecoder::process located in ricedecoder.c. It allows an attacker to cause Denial of Service...
CVE-2021-39546
An issue was discovered in sela through 20200412. rice::RiceDecoder::process in ricedecoder.cpp has a heap-based buffer overflow...