Lucene search
K

53 matches found

EUVD
EUVD
added 2026/06/15 9:30 p.m.7 views

EUVD-2026-36805

A denial of service vulnerability was found in GStreamer's AV1 codec parser in gst-plugins-bad. The gstav1parserparsetilelistobu function passes a byte count to a bit-reader API that expects a bit count, causing parser desynchronization. A remote attacker could trick a user into opening a special...

6.5CVSS5.3AI score0.00307EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2020-9060

Malware in sbrugna...

10CVSS7.5AI score0.03411EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-40625

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.00831EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-32914

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.00668EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-16239

Malicious code in bioql PyPI...

8.8CVSS7.7AI score0.01559EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-32913

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.00668EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35375

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.02118EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-35399

Malicious code in bioql PyPI...

7.8CVSS8.2AI score0.02135EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 4: gstreamer1-plugins-bad-free (TSSA-2024:0475)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0475 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.8CVSS7.9AI score0.01534EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/09 12:0 a.m.7 views

NewStart CGSL MAIN 7.02 : gstreamer1-plugins-bad-free Vulnerability (NS-SA-2025-0083)

The remote NewStart CGSL host, running version MAIN 7.02, has gstreamer1-plugins-bad-free packages installed that are affected by a vulnerability: - GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...

8.8CVSS7.9AI score0.01534EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.16 views

RHEL 9 : gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server (RHSA-2025:7178)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7178 advisory. The gstreamer1 packages contain a streaming media framework, based on graphs of filters which operate on media data. Security Fixes:...

8.8CVSS7.6AI score0.01565EPSS
Exploits0References8
GoogleProjectZero
GoogleProjectZero
added 2024/10/03 12:0 a.m.14 views

Effective Fuzzing: A Dav1d Case Study

Guest post by Nick Galloway, Senior Security Engineer, 20% time on Project Zero Late in 2023, while working on a 20% project with Project Zero, I found an integer overflow in the dav1d AV1 video decoder. That integer overflow leads to an out-of-bounds write to memory. Dav1d 1.4.0 patched this, an...

8.8CVSS8.1AI score0.01835EPSS
Exploits0
Debian
Debian
added 2024/08/21 8:50 a.m.11 views

[SECURITY] [DSA 5753-1] aom security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5753-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 21, 2024 https://www.debian.org/security/faq -...

10CVSS7.2AI score0.01254EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.29 views

Debian dsa-5753 : aom-tools - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5753 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5753-1 [email protected] https://www.debian.org/security/ Moritz...

10CVSS8AI score0.01254EPSS
Exploits1References4
OSV
OSV
added 2024/06/07 11:15 p.m.21 views

CVE-2024-0444

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

8.8CVSS8AI score
Exploits0References2
Cvelist
Cvelist
added 2024/06/07 10:49 p.m.26 views

CVE-2024-0444 GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.5CVSS0.01559EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/06/05 12:0 a.m.17 views

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of tile lis...

7.5CVSS9.4AI score0.01559EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 2:14 a.m.29 views

CVE-2023-50186 GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may...

7.5CVSS7.6AI score0.01534EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/24 12:0 a.m.3 views

PT-2024-6079 · Gstreamer +5 · Gstreamer +5

Name of the Vulnerable Software and Affected Versions: GStreamer versions prior to 1.22.9 Description: This issue allows remote attackers to execute arbitrary code on affected installations of GStreamer. The specific flaw exists within the parsing of tile list data within AV1-encoded video files...

8.8CVSS7.6AI score0.01565EPSS
Exploits0References53
OpenVAS
OpenVAS
added 2024/01/15 12:0 a.m.8 views

SUSE: Security Advisory (SUSE-SU-2024:0100-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References4
Rows per page
Query Builder