Lucene search
K

96 matches found

CNNVD
CNNVD
added 2026/03/23 12:0 a.m.9 views

OwnTone 安全漏洞

OwnTone is an open-source Linux/FreeBSD DAAP iTunes, MPD Music Player Daemon, and RSP Roku media server. OwnTone has a security vulnerability that stems from a null pointer dereferencing in the daapreplyplaylists function. This vulnerability could allow attackers to cause denial of service by...

7.5CVSS5.8AI score0.00339EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/23 12:0 a.m.2 views

CVE-2026-26828

A NULL pointer dereference in the daapreplyplaylists function src/httpddaap.c of owntone-server commit 3d1652d allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

5.8AI score0.00339EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/23 12:0 a.m.4 views

CVE-2026-26828

A NULL pointer dereference in the daapreplyplaylists function src/httpddaap.c of owntone-server commit 3d1652d allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

7.5CVSS5.8AI score0.00339EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.3 views

PT-2026-27146

A NULL pointer dereference in the daap reply playlists function src/httpd daap.c of owntone-server commit 3d1652d allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

7.5CVSS5.8AI score0.00339EPSS
Exploits0References4
OSV
OSV
added 2026/02/17 12:0 a.m.4 views

OPENSUSE-SU-2026:10215-1 owntone-29.0-2.1 on GA media

These are all security issues fixed in the owntone-29.0-2.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.00324EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/01/22 12:29 a.m.6 views

SUSE CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

7.5CVSS5.6AI score0.00332EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/22 12:29 a.m.4 views

SUSE CVE-2025-57156

NULL pointer dereference in the dacpreplyplayqueueeditclear function in src/httpddacp.c in owntone-server through commit 6d604a1 newer commit after version 28.12 allows remote attackers to cause a Denial of Service crash...

7.5CVSS5.6AI score0.0043EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/01/22 12:28 a.m.5 views

SUSE CVE-2025-63647

A NULL pointer dereference in the parsemeta function src/httpddaap.c of owntone-server commit 334beb allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

7.5CVSS5.5AI score0.00352EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/22 12:28 a.m.5 views

SUSE CVE-2025-63648

A NULL pointer dereference in the dacpreplyplayqueueeditmove function src/httpddacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...

7.5CVSS5.5AI score0.00324EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/21 9:25 a.m.6 views

CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

7.5CVSS5.5AI score0.00332EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/21 12:30 a.m.11 views

CVE-2025-63648

A NULL pointer dereference in the dacpreplyplayqueueeditmove function src/httpddacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...

7.5CVSS5.4AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/21 12:30 a.m.8 views

CVE-2025-57156

NULL pointer dereference in the dacpreplyplayqueueeditclear function in src/httpddacp.c in owntone-server through commit 6d604a1 newer commit after version 28.12 allows remote attackers to cause a Denial of Service crash...

7.5CVSS5.5AI score0.0043EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/21 12:30 a.m.13 views

CVE-2025-63647

A NULL pointer dereference in the parsemeta function src/httpddaap.c of owntone-server commit 334beb allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

7.5CVSS5.4AI score0.00352EPSS
Exploits0References1
NVD
NVD
added 2026/01/20 9:16 p.m.4 views

CVE-2025-63647

A NULL pointer dereference in the parsemeta function src/httpddaap.c of owntone-server commit 334beb allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

7.5CVSS0.00352EPSS
Exploits0References3
NVD
NVD
added 2026/01/20 9:16 p.m.4 views

CVE-2025-63648

A NULL pointer dereference in the dacpreplyplayqueueeditmove function src/httpddacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...

7.5CVSS0.00324EPSS
Exploits0References3
NVD
NVD
added 2026/01/20 9:16 p.m.5 views

CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

7.5CVSS0.00332EPSS
Exploits0References2
NVD
NVD
added 2026/01/20 9:16 p.m.8 views

CVE-2025-57156

NULL pointer dereference in the dacpreplyplayqueueeditclear function in src/httpddacp.c in owntone-server through commit 6d604a1 newer commit after version 28.12 allows remote attackers to cause a Denial of Service crash...

7.5CVSS0.0043EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/20 12:0 a.m.16 views

CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

0.00332EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.4 views

PT-2026-3656

A NULL pointer dereference in the dacp reply playqueueedit move function src/httpd dacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...

5.5AI score0.00324EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/20 12:0 a.m.16 views

CVE-2025-63648

A NULL pointer dereference in the dacpreplyplayqueueeditmove function src/httpddacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...

0.00324EPSS
Exploits0References3
Rows per page
Query Builder