Lucene search
K

264 matches found

Cvelist
Cvelist
added 2026/06/15 7:10 p.m.38 views

CVE-2026-53704 Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer fileinfo metadata parser

A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using reskippascalstring without validating that offsets remain...

7.1CVSS0.00221EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/15 7:10 p.m.8 views

CVE-2026-53703 Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer audio stream header parser

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS5.5AI score0.00228EPSS
Exploits0References4
CVE
CVE
added 2026/06/15 7:10 p.m.23 views

CVE-2026-53703

GStreamer RealMedia demuxer (gst-plugins-ugly) contains an out-of-bounds read vulnerability in MDPR parsing for audio stream headers (versions 4 and 5). When processing a RealMedia (.rm) file, the demuxer reads codec type, packet size, sample rate, channel count, and extra codec data length from ...

7.1CVSS5.5AI score0.00228EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/06/15 7:10 p.m.9 views

CVE-2026-53703

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS5.5AI score0.00228EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/15 7:10 p.m.34 views

CVE-2026-53703 Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer audio stream header parser

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS0.00228EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/15 7:10 p.m.9 views

CVE-2026-53704

A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO metadata section, the demuxer parses variable-name and variable-value pairs using reskippascalstring without validating that offsets remain...

7.1CVSS4.8AI score0.00221EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/15 7:10 p.m.9 views

CVE-2026-53703

A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties chunks to configure audio streams. For audio stream header versions 4 and 5, the parser reads fields such as codec type, packet size, sampl...

7.1CVSS5AI score0.00228EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.12 views

PT-2026-49340

Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description A flaw exists in the RealMedia demuxer within the gst-plugins-ugly package. When processing a RealMedia file with a specially crafted FILEINFO metadata section, the demuxer uses the re skip...

7.1CVSS6AI score0.00221EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.23 views

PT-2026-49339

Name of the Vulnerable Software and Affected Versions GStreamer RealMedia demuxer gst-plugins-ugly affected versions not specified Description An out-of-bounds read exists in the RealMedia demuxer when processing RealMedia .rm files. The demuxer parses MDPR media properties chunks to configure...

7.1CVSS6.1AI score0.00228EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-53704

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GStreamer's RealMedia demuxer in the gst-plugins-ugly package. When processing a RealMedia file containing a specially crafted FILEINFO...

7.1CVSS5.9AI score0.00221EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53703

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in the GStreamer RealMedia demuxer gst-plugins-ugly. When processing a RealMedia .rm file, the demuxer parses MDPR media properties...

7.1CVSS6AI score0.00228EPSS
Exploits0References4
Snyk
Snyk
added 2026/06/12 12:0 a.m.3 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the rmdemux process when parsing a specially crafted RealMedia file containing a malformed FILEINFO metadata section. An attacker can cause the application to crash, hang, or potentially access limited adjacent...

7.1CVSS5.8AI score0.00221EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.14 views

RockyLinux 10 : gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free (RLSA-2026:19024)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19024 advisory. GStreamer: GStreamer: Arbitrary code execution via ASF file processing CVE-2026-2920 GStreamer: GStreamer: Remote Code Execution via heap-based buffer...

8.8CVSS6.4AI score0.00867EPSS
Exploits0References15
Rockylinux
Rockylinux
added 2026/05/28 3:43 p.m.18 views

gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update

An update is available for gstreamer1-plugins-ugly-free, gstreamer1-plugins-bad-free, gstreamer1-plugins-good, gstreamer1-plugins-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS7.7AI score0.00867EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.13 views

RockyLinux 9 : gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free (RLSA-2026:19180)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19180 advisory. GStreamer: GStreamer: Arbitrary code execution via ASF file processing CVE-2026-2920 GStreamer: GStreamer: Remote Code Execution via heap-based buffer...

8.8CVSS6.4AI score0.00867EPSS
Exploits0References15
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in gst-plugins-ugly1.0

GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may...

8.8CVSS8.7AI score0.01201EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in gst-plugins-ugly1.0

GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may...

8.8CVSS8.6AI score0.01468EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/19 6:19 p.m.15 views

GStreamer: GStreamer: Remote Code Execution via out-of-bounds write in RealMedia Demuxer

A flaw was found in GStreamer. This vulnerability allows a remote attacker to execute arbitrary code by exploiting an out-of-bounds write in the RealMedia Demuxer component. The issue occurs due to improper validation of user-supplied data during the processing of video packets, leading to a writ...

7.8CVSS7.8AI score0.00431EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/19 1:24 p.m.16 views

GStreamer: GStreamer: Remote Code Execution via out-of-bounds write in RealMedia Demuxer

A flaw was found in GStreamer. This vulnerability allows a remote attacker to execute arbitrary code by exploiting an out-of-bounds write in the RealMedia Demuxer component. The issue occurs due to improper validation of user-supplied data during the processing of video packets, leading to a writ...

7.8CVSS7.8AI score0.00431EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2026/05/06 12:0 a.m.3 views

The vulnerability of the RealMedia demuxer component in the Gstreamer multimedia framework allows a hacker to execute arbitrary code.

The vulnerability of the RealMedia demuxer component in the Gstreamer multimedia framework is related to writing beyond the buffer memory boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.00431EPSS
Exploits0References11Affected Software10
Rows per page
Query Builder