CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2021/08/25 6:23 p.m.•19 views

CVE-2021-21842

8.8CVSS9AI score0.00418EPSS

Exploits1References2

CVE•added 2021/08/25 6:23 p.m.•58 views

CVE-2021-21842

The CVE-2021-21842 issue affects the GPAC Project on Advanced Content library v1.0.1, where an exploitable integer overflow in the MPEG-4 decoding path (processing an atom with the 'ssix' FourCC) leads to a heap-based buffer overflow and memory corruption. Unchecked arithmetic during decoding all...

8.8CVSS8.6AI score0.00418EPSS

Exploits1References2Affected Software1

CVE•added 2021/08/25 6:21 p.m.•81 views

CVE-2021-21840

GPAC Project on Advanced Content (GPAC) library v1.0.1 contains a vulnerability in MPEG-4 decoding. A crafted MPEG-4 input targeting the saio FOURCC can trigger an integer overflow, leading to a heap-based buffer overflow and memory corruption. The issue is exploitable when a user opens a malicio...

8.8CVSS8.6AI score0.0025EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/08/25 6:21 p.m.•15 views

CVE-2021-21840

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input used to process an atom using the “saio” FOURCC code cause an integer overflow due to unchecked arithmetic resulti...

8.8CVSS9AI score0.0025EPSS

Exploits1References2

Debian CVE•added 2021/08/25 6:21 p.m.•17 views

CVE-2021-21840

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input used to process an atom using the “saio” FOURCC code cause an integer overflow due to unchecked arithmetic resulti...

8.8CVSS8.8AI score0.0025EPSS

Cvelist•added 2021/08/25 6:21 p.m.•17 views

CVE-2021-21836

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input using the “ctts” FOURCC code can cause an integer overflow due to unchecked arithmetic resulting in a heap-based...

8.8CVSS9AI score0.0025EPSS

Exploits1References2

CVE•added 2021/08/25 6:21 p.m.•65 views

CVE-2021-21836

CVE-2021-21836 concerns the GPAC Project on Advanced Content library (GPAC) v1.0.1. The vulnerability is a heap-based buffer overflow triggered by an exploitable integer overflow in the MPEG-4 decoding path when processing the ctts atom/FOURCC, due to unchecked arithmetic. This can lead to memory...

8.8CVSS8.6AI score0.0025EPSS

Exploits1References2Affected Software1

Debian CVE•added 2021/08/25 6:21 p.m.•25 views

CVE-2021-21836

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input using the “ctts” FOURCC code can cause an integer overflow due to unchecked arithmetic resulting in a heap-based...

8.8CVSS8.8AI score0.0025EPSS

Debian CVE•added 2021/08/25 6:19 p.m.•20 views

CVE-2021-21834

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input when decoding the atom for the “co64” FOURCC can cause an integer overflow due to unchecked arithmetic resulting i...

8.8CVSS8.8AI score0.00209EPSS

Cvelist•added 2021/08/25 6:19 p.m.•16 views

CVE-2021-21835

An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input when decoding the atom associated with the “csgp” FOURCC can cause an integer overflow due to unchecked arithmetic...

8.8CVSS9AI score0.00438EPSS

Positive Technologies•added 2021/08/23 12:0 a.m.•2 views

PT-2021-10242 · Libav · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: The issue is a heap-based buffer over-read in the vc1 decode b mb intfi function in vc1 block.c, which can be exploited by an attacker to cause a denial-of-service via a crafted file. Recommendations: For Libav...

6.5CVSS6.2AI score0.00285EPSS

Exploits1References9

CNNVD•added 2021/08/23 12:0 a.m.•1 views

Libav 缓冲区错误漏洞

Libav is an open source audio and video processing tool that provides cross-platform tools and libraries for converting, manipulating, and streaming various multimedia formats and protocols. vc1decodepmbintfi in vc1block.c in Libav version 12.3 is vulnerable to a heap buffer overflow. An attacker...

6.5CVSS6.1AI score0.00481EPSS

Exploits1References3

8.8CVSS3.3AI score0.00198EPSS

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64077)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

CNVD•added 2021/08/19 12:0 a.m.•29 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64078)

8.8CVSS3.3AI score0.00509EPSS

CNVD•added 2021/08/19 12:0 a.m.•19 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64085)

8.8CVSS3AI score0.00528EPSS

6.8CVSS3.2AI score0.00238EPSS

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-82987)

Exploits1Affected Software1

8.8CVSS3.1AI score0.00509EPSS

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64082)

CNVD•added 2021/08/19 12:0 a.m.•22 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64081)

8.8CVSS2.8AI score0.00509EPSS

8.8CVSS2.4AI score0.00523EPSS

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64084)