CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в gst-plugins-good1.0

GStreamer is a library for constructing graphs of media-handling components. A OOB-read vulnerability has been discovered in gstwavparseadtlchunk within gstwavparse.c. This vulnerability arises due to insufficient validation of the size parameter, which can exceed the bounds of the data buffer. A...

7.5CVSS6.4AI score0.0046EPSS

Exploits0References2

OSV•added 2026/05/08 5:46 a.m.•3 views

BIT-JRE-2024-47778 GHSL-2024-258: GStreamer has an OOB-read in gst_wavparse_adtl_chunk

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in gstwavparseadtlchunk within gstwavparse.c. This vulnerability arises due to insufficient validation of the size parameter, which can exceed the bounds of the data buffer. ...

7.5CVSS6.5AI score0.0046EPSS

Exploits0References5

Positive Technologies•added 2026/05/08 12:0 a.m.•8 views

PT-2026-38841

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in gst wavparse adtl chunk within gstwavparse.c. This vulnerability arises due to insufficient validation of the size parameter, which can exceed the bounds of the data buffe...

7.5CVSS5.7AI score0.0046EPSS

Exploits0References6

OSV•added 2026/05/06 2:45 p.m.•2 views

BIT-JAVA-MIN-2024-47778 GHSL-2024-258: GStreamer has an OOB-read in gst_wavparse_adtl_chunk

7.5CVSS5.7AI score0.0046EPSS

Exploits0References5

Positive Technologies•added 2026/05/06 12:0 a.m.•6 views

PT-2026-38027

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in gst wavparse adtl chunk within gstwavparse.c. This vulnerability arises due to insufficient validation of the size parameter, which can exceed the bounds of the data buffe...

7.5CVSS6.5AI score0.0046EPSS

Exploits0References6

Positive Technologies•added 2026/05/06 12:0 a.m.•3 views

PT-2026-37820

GStreamer is a library for constructing graphs of media-handling components. An OOB-read vulnerability has been discovered in gst wavparse adtl chunk within gstwavparse.c. This vulnerability arises due to insufficient validation of the size parameter, which can exceed the bounds of the data buffe...

7.5CVSS6.5AI score0.0046EPSS

Exploits0References6

SUSE CVE•added 2026/03/25 11:55 a.m.•1 views

SUSE CVE-2026-1940

An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gstwavparseadtlchunk function. The patch added a size validation check lsize + 8 size, but it does not account for the GSTROUNDUP2lsize used in the actual offset calculation. When lsize is an odd number, the parser advances more...

5.1CVSS6.8AI score0.00056EPSS

Exploits0References3

Snyk•added 2026/03/23 10:34 p.m.•4 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the gstwavparseadtlchunk function. An attacker can cause an out-of-bounds read by crafting input where the lsize value is odd, leading the parser to advance more bytes than validated due to improper handling of siz...

7.5CVSS5.9AI score0.00056EPSS

Exploits0References2

Snyk•added 2026/03/23 10:34 p.m.•5 views

Out-of-bounds Read

7.5CVSS5.9AI score0.00056EPSS

Exploits0References2

NVD•added 2026/03/23 10:16 p.m.•1 views

CVE-2026-1940

7.5CVSS0.00056EPSS

Exploits0References5

OSV•added 2026/03/23 10:16 p.m.•2 views

UBUNTU-CVE-2026-1940

7.5CVSS5.8AI score0.00056EPSS

Exploits0References3

AlpineLinux•added 2026/03/23 9:26 p.m.•1 views

CVE-2026-1940

7.5CVSS6.8AI score0.0046EPSS

Exploits0References5

ATTACKERKB•added 2026/03/23 9:26 p.m.•7 views

CVE-2026-1940

7.5CVSS6.7AI score0.0046EPSS

Exploits0References6

Debian CVE•added 2026/03/23 9:26 p.m.•2 views

CVE-2026-1940

7.5CVSS8.1AI score0.00056EPSS

Exploits0

Vulnrichment•added 2026/03/23 9:26 p.m.•1 views

CVE-2026-1940 Gstreamer: incomplete fix of cve-2026-1940

5.1CVSS6.7AI score0.00056EPSS

Exploits0References5

CVE•added 2026/03/23 9:26 p.m.•21 views

CVE-2026-1940

CVE-2026-1940 describes an out-of-bounds read in gst_wavparse_adtl_chunk() due to improper handling of lsize and GST_ROUND_UP_2(lsize) in the WAV parser. Connected advisories confirm affected package family: gstreamer1-plugins-good (AL2/ALAS2 and AL2023 lines). Patches and updated packages are pr...

7.5CVSS6.7AI score0.00056EPSS

Exploits0References5Affected Software4

Cvelist•added 2026/03/23 9:26 p.m.•24 views

CVE-2026-1940 Gstreamer: incomplete fix of cve-2026-1940

5.1CVSS0.00056EPSS

Exploits0References5

RedhatCVE•added 2026/03/23 9:26 p.m.•1 views

CVE-2026-1940

7.5CVSS6.7AI score0.0046EPSS

Exploits0References6

CNNVD•added 2026/03/23 12:0 a.m.•2 views

GStreamer 安全漏洞

GStreamer is a set of open-source frameworks for processing streaming media. There is a security vulnerability in GStreamer, which stems from incomplete repairs to CVE-2024-47778. The gstwavparseadtlchunk function involves out-of-bounds reading; when lsize is an odd number, the number of bytes...

7.5CVSS7.3AI score0.00056EPSS

Exploits0References5

Positive Technologies•added 2026/01/01 12:0 a.m.•1 views

PT-2026-26749

An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst wavparse adtl chunk function. The patch added a size validation check lsize + 8 size, but it does not account for the GST ROUND UP 2lsize used in the actual offset calculation. When lsize is an odd number, the parser advance...

7.5CVSS6.7AI score0.0046EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by