Lucene search
K

44 matches found

OSV
OSV
added 2025/09/12 8:15 a.m.5 views

CVE-2025-21042

Out-of-bounds write in libimagecodec.quram.so prior to SMR Apr-2025 Release 1 allows remote attackers to execute arbitrary code...

9.8CVSS6AI score0.11606EPSS
Exploits1References3
EUVD
EUVD
added 2025/09/12 7:21 a.m.8 views

EUVD-2025-29028

Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code...

9.8CVSS7AI score0.01435EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2025/09/12 12:0 a.m.5 views

PT-2025-37297

Name of the Vulnerable Software and Affected Versions Samsung devices versions Android 13 through 16 Description A critical out-of-bounds write vulnerability exists in the libimagecodec.quram.so library, potentially allowing remote attackers to execute arbitrary code on vulnerable devices. This...

9.8CVSS8.1AI score0.01435EPSS
Exploits3References125
VulnCheck KEV
VulnCheck KEV
added 2025/09/12 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-21043

Out-of-bounds write in libimagecodec.quram.so prior to SMR Sep-2025 Release 1 allows remote attackers to execute arbitrary code...

9.8CVSS6.1AI score0.01435EPSS
In wildExploits3References7
AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.5 views

Astra Linux – Vulnerability in libvpx

There are integer overflows in the libvpx library in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may lead to integer overflows in the calculations of buffer sizes and offsets, and some fields of the returned vpximaget struct may become invali...

9.1CVSS7.3AI score0.00814EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2024/11/18 9:16 a.m.10 views

libvpx: Integer overflow in vpx_img_alloc()

A flaw was found in libvpx. When creating images, libvpx trusts the width, height, and alignment of the user input. However, it does not properly validate the provided values. This flaw allows an attacker to craft user inputs or trick the user into opening crafted files, where these types of valu...

9.1CVSS5.7AI score0.00814EPSS
Exploits1References4
Debian
Debian
added 2024/09/07 7:13 p.m.9 views

[SECURITY] [DLA 3881-1] aom security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 07, 2024 https://wiki.debian.org/LTS -...

10CVSS6.5AI score0.01254EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/09/07 12:0 a.m.25 views

Debian dla-3881 : aom-tools - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3881 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3881-1 [email protected] https://www.debian.org/lts/security/...

10CVSS7.4AI score0.01254EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.30 views

Debian dsa-5753 : aom-tools - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5753 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5753-1 [email protected] https://www.debian.org/security/ Moritz...

10CVSS8AI score0.01254EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.5 views

Number withdrawn

libyaml is a codec library for YAML from the YAML community. This CVE number has been withdrawn...

6.9AI score
Exploits0References2
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.7 views

Number withdrawn

libyaml is a codec library for YAML from the YAML community. This CVE number has been withdrawn...

6.9AI score
Exploits0References3
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.4 views

Number withdrawn

libyaml is a codec library for YAML from the YAML community. This CVE number has been withdrawn...

6.9AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/10/04 1:15 p.m.14 views

libvpx: Heap buffer overflow in vp8 encoding in libvpx

A heap-based buffer overflow flaw was found in the way libvpx, a library used to process VP8 and VP9 video codecs data, processes certain specially formatted video data via a crafted HTML page. This flaw allows an attacker to crash or remotely execute arbitrary code in an application, such as a w...

8.8CVSS7.8AI score0.49013EPSS
Exploits3References6
OSV
OSV
added 2023/09/30 8:15 p.m.3 views

DEBIAN-CVE-2023-44488

VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding...

7.5CVSS6.8AI score0.01936EPSS
Exploits0References1
NCSC
NCSC
added 2023/09/12 12:0 a.m.4 views

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution User rights Access to sensitive...

8.8CVSS7.5AI score0.39491EPSS
Exploits8
OSV
OSV
added 2023/06/14 2:15 p.m.3 views

UBUNTU-CVE-2023-34823

fdkaac before 1.0.5 was discovered to contain a stack overflow in readcallback function in src/main.c...

5.5CVSS5.8AI score0.00293EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.6 views

SUSE CVE-2017-18244

The stereoprocessing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service out-of-bounds read via a crafted aac file, related to ffpsapply...

6.5CVSS6.8AI score0.01029EPSS
Exploits0References3
OSV
OSV
added 2019/09/27 7:15 p.m.3 views

CVE-2019-9338

In libavc there is a possible information disclosure due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-111762686...

6.5CVSS7AI score0.00769EPSS
Exploits0References1
OSV
OSV
added 2018/01/12 11:29 p.m.3 views

CVE-2017-13186

A vulnerability in the Android media framework libavc related to incorrect use of mmco parameters. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-65735716...

7.5CVSS5.8AI score0.00463EPSS
Exploits0References2
CNVD
CNVD
added 2017/08/21 12:0 a.m.4 views

Google Android Media framework (libavc) Denial of Service Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. media framework libavc is one of the frameworks used for multimedia development. A denial of service vulnerability exists in Media framework libavc in Android. A remote attacker ca...

5.5CVSS5.7AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder