CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

73 matches found

OSV•added 2024/05/19 11:15 a.m.•0 views

UBUNTU-CVE-2024-35921

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix oops when HEVC init fails The stateless HEVC decoder saves the instance pointer in the context regardless if the initialization worked or not. This caused a use after free, when the pointer is freed i...

7.8CVSS5.7AI score0.00019EPSS

Exploits0References10

Positive Technologies•added 2023/11/03 12:0 a.m.•2 views

PT-2023-7232 · Gstreamer +6 · Gstreamer +6

Name of the Vulnerable Software and Affected Versions: GStreamer affected versions not specified Description: The issue is related to a heap-based buffer overflow in the AV1 Codec parsing of the GStreamer multimedia framework. This allows remote attackers to execute arbitrary code on affected...

10CVSS8AI score0.09183EPSS

Exploits0References83

CNNVD•added 2023/08/31 12:0 a.m.•2 views

FreeRDP 资源管理错误漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a resource management error vulnerability that stems from a post-release reuse issue in the avc420ensurebuffer and avc444ensurebuffer functions...

9.8CVSS7.7AI score0.00238EPSS

Exploits1References3

OSV•added 2023/03/01 3:15 p.m.•0 views

UBUNTU-CVE-2023-24752

libde265 v1.0.10 was discovered to contain a NULL pointer dereference in the ffhevcputhevcepelpixels8sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input file...

5.5CVSS7.1AI score0.00033EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 4:52 a.m.•1 views

SUSE CVE-2017-3068

Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the Advanced Video Coding engine. Successful exploitation could lead to arbitrary code execution...

8.8CVSS7.9AI score0.68456EPSS

Exploits2References4

CNNVD•added 2023/01/05 12:0 a.m.•1 views

GPAC MP4Box 安全漏洞

GPAC MP4Box is multimedia packager. It is mainly used to work with ISOBMF files e.g. MP4, 3GP but can also be used to import/export media from container files such as AVI, MPG, MKV, MPEG-2 TS. A security vulnerability exists in GPAC MP4Box version 2.1-DEV-rev617-g85ce76efd, which stems from a...

7.8CVSS8AI score0.00053EPSS

Exploits1References2

OSV•added 2022/11/02 2:15 p.m.•1 views

DEBIAN-CVE-2022-43238

Libde265 v1.0.8 was discovered to contain an unknown crash via ffhevcputhevcqpelh3v3sse in sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted video file...

6.5CVSS6.5AI score0.00288EPSS

Exploits1References1

CNNVD•added 2022/10/28 12:0 a.m.•1 views

Mozilla Firefox 缓冲区错误漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation. A security vulnerability exists in Mozilla Firefox due to an out-of-bounds read when using H264 decoding...

5.5CVSS7.3AI score0.00083EPSS

Exploits0References8

RedHat Linux•added 2022/09/26 3:41 p.m.•3 views

Mozilla: Out of bounds read when decoding H264

The Mozilla Foundation Security Advisory describes this flaw as: An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash...

5.5CVSS7.3AI score0.00083EPSS

Exploits0References6

RedHat Linux•added 2022/09/26 2:54 p.m.•2 views

Mozilla: Out of bounds read when decoding H264

The Mozilla Foundation Security Advisory describes this flaw as: An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash...

5.5CVSS7.3AI score0.00083EPSS

Exploits0References6

RedHat Linux•added 2022/09/26 2:16 p.m.•2 views

Mozilla: Out of bounds read when decoding H264

The Mozilla Foundation Security Advisory describes this flaw as: An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash...

5.5CVSS7.3AI score0.00083EPSS

Exploits0References6

CNNVD•added 2022/09/02 12:0 a.m.•1 views

PKUVCL davs2 安全漏洞

davs2 is an open source decoder for AVS2-P2/IEEE1857.4 video coding standard open source by PKUVCL in China. A security vulnerability exists in PKUVCL davs2 v1.6.205, which stems from a global buffer overflow in the parsesequenceheader function in its source/common/header.cc:269 component...

5.5CVSS6AI score0.00049EPSS

Exploits1References2

OSV•added 2022/06/15 10:15 p.m.•2 views

CVE-2022-29111

HEVC Video Extensions Remote Code Execution Vulnerability...

7.8CVSS7.4AI score0.0241EPSS

Exploits0References2

ATTACKERKB•added 2022/06/15 10:15 p.m.•2 views

CVE-2022-29119

HEVC Video Extensions Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.03164EPSS

Exploits0References3Affected Software2

ATTACKERKB•added 2022/06/15 10:15 p.m.•4 views

CVE-2022-22018

HEVC Video Extensions Remote Code Execution Vulnerability...

7.8CVSS7.2AI score0.03164EPSS

Exploits0References3Affected Software2

CNNVD•added 2022/04/20 12:0 a.m.•2 views

GPAC 缓冲区错误漏洞

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC 2.0.0, which stems from the fact that gprtpbuilderdohevc in ietf/rtppckmpeg4.c has a heap-based buffer over-read, as shown in MP4Box...

5.5CVSS7.1AI score0.00266EPSS

Exploits1References5

CNNVD•added 2022/04/12 12:0 a.m.•2 views

Microsoft Windows Codecs Library 输入验证错误漏洞

Microsoft HEVC Video Extensions is a video extension application from Microsoft USA. The application enables computers and devices to read High Efficiency Video Coding or HEVC videos. A remote code execution vulnerability exists in Microsoft HEVC Video Extensions, which can be exploited by an...

9.3CVSS8.9AI score0.0185EPSS

Exploits0References5

OSV•added 2022/03/09 5:15 p.m.•1 views

CVE-2022-24452

HEVC Video Extensions Remote Code Execution Vulnerability...

7.8CVSS7.4AI score0.02551EPSS

Exploits0References1

ATTACKERKB•added 2022/03/09 5:15 p.m.•1 views

CVE-2022-23301

HEVC Video Extensions Remote Code Execution Vulnerability...

7.8CVSS7.2AI score0.02551EPSS

Exploits0References3Affected Software2