Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded yesterday3 views

CVE-2026-12892

A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H.264 video file containing malformed MVC or SVC extension slice NAL units, a 1-byte heap out-of-bounds read can occur during parsing. This happens when the parser attempts to check slice boundary...

4.4CVSS5.8AI score
Exploits0References4
Debian CVE
Debian CVEadded 5 days ago4 views

CVE-2026-49337

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes decodercontext::readsliceNAL libde265/decctx.cc:481 to attach slice headers to a finished picture object that has no active image unit, resulting in...

4.3CVSS5.8AI score0.00194EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 5 days ago7 views

CVE-2026-49337

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes decodercontext::readsliceNAL libde265/decctx.cc:481 to attach slice headers to a finished picture object that has no active image unit, resulting in...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/02/19 7:28 p.m.5 views

CVE-2026-26203 PJSIP's pjmedia-video has use-after-free in H264 packetizer when packetizing fragmented NAL

PJSIP is a free and open source multimedia communication library. Versions prior to 2.17 have a critical heap buffer underflow vulnerability in PJSIP's H.264 packetizer. The bug occurs when processing malformed H.264 bitstreams without NAL unit start codes, where the packetizer performs unchecked...

5.1CVSS5.9AI score0.00101EPSS
Exploits0References2
NVD
NVDadded 2025/09/24 4:15 p.m.5 views

CVE-2025-21483

Memory corruption when the UE receives an RTP packet from the network, during the reassembly of NALUs...

9.8CVSS0.00402EPSS
Exploits0References1
CVE
CVEadded 2025/09/24 3:33 p.m.42 views

CVE-2025-21483

CVE-2025-21483 affects Qualcomm Snapdragon embedded platform firmware in the Data Network Stack & Connectivity component. It stems from a buffer overflow during RTP packet reassembly of NAL units, leading to memory corruption in the UE. The CVSS 3.1/3.1 vector is Network, Privileges=None, User in...

9.8CVSS6.9AI score0.00402EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCveadded 2016/08/05 8:59 p.m.25 views

CVE-2016-3828

decoder/ih264dapi.c in mediaserver in Android 6.x before 2016-08-01 mishandles invalid PPS and SPS NAL units, which allows remote attackers to cause a denial of service device hang or reboot via a crafted media file, aka internal bug 28835995...

7.1CVSS6.5AI score0.00574EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2015/10/01 12:59 a.m.50 views

CVE-2015-3832

Multiple buffer overflows in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via invalid size values of NAL units in MP4 data, aka internal bug 19641538...

10CVSS6.2AI score0.02883EPSS
Exploits0References3
android
androidadded 2015/08/01 12:0 a.m.41 views

CVE-2015-3832

Multiple buffer overflows in MPEG4Extractor.cpp in libstagefright in Android before 5.1.1 LMY48I allow remote attackers to execute arbitrary code via invalid size values of NAL units in MP4 data, aka internal bug 19641538...

10CVSS8.9AI score0.02883EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder