Lucene search
K

69 matches found

Cvelist
Cvelist
added 2026/01/20 12:0 a.m.16 views

CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

0.00332EPSS
Exploits0References2
CVE
CVE
added 2026/01/20 12:0 a.m.14 views

CVE-2025-57155

Summary: CVE-2025-57155 affects owntone-server due to a NULL pointer dereference in the daap_reply_groups function (src/httpd_daap.c) triggered by a commit 5e6f19a, after version 28.2. This flaw allows remote attackers to cause a Denial of Service. What’s affected: owntone-server builds prior to ...

7.5CVSS5.5AI score0.00332EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.4 views

PT-2026-3653

Name of the Vulnerable Software and Affected Versions owntone-server versions prior to the commit after version 28.2 Description A flaw exists in owntone-server due to a NULL pointer dereference within the daap reply groups function, located in src/httpd daap.c. This issue, present through commit...

7.5CVSS5.4AI score0.00332EPSS
Exploits0References5
OSV
OSV
added 2026/01/20 12:0 a.m.5 views

CVE-2025-63647

A NULL pointer dereference in the parsemeta function src/httpddaap.c of owntone-server commit 334beb allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

7.5CVSS5.5AI score0.00352EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.10 views

PT-2026-3655

A NULL pointer dereference in the parse meta function src/httpd daap.c of owntone-server commit 334beb allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...

5.5AI score0.00352EPSS
Exploits0References4
OSV
OSV
added 2026/01/20 12:0 a.m.5 views

CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

7.5CVSS5.6AI score0.00332EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2009-1175

Malware in sbrugna...

4.3CVSS6.4AI score0.00885EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-18548

Malware in sbrugna...

5.5CVSS6.4AI score0.01033EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.5 views

SUSE CVE-2009-1175

Cross-site scripting XSS vulnerability in apps/web/vsdiag.cgi in the DAAP extension in Banshee 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the server parameter, which is not properly handled in an error message...

4.3CVSS6AI score0.00885EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.3 views

SUSE CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

5.3CVSS7.7AI score0.01033EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2019/10/04 9:33 p.m.10 views

CVE-2009-1175

Cross-site scripting XSS vulnerability in apps/web/vsdiag.cgi in the DAAP extension in Banshee 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the server parameter, which is not properly handled in an error message...

4.3CVSS5.9AI score0.00885EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/07/21 12:0 a.m.37 views

Wireshark 2.2.x < 2.2.8 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.8 advisory. - In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust...

7.8CVSS6.9AI score0.03343EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2017/07/21 12:0 a.m.38 views

Wireshark 2.2.x < 2.2.8 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.2.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.8 advisory. - In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system...

7.8CVSS6.9AI score0.03343EPSS
Exploits0References20
CNVD
CNVD
added 2017/06/26 12:0 a.m.18 views

Wireshark 'dissect_daap_one_tag' function denial of service vulnerability

Wireshark formerly Ethereal is a suite of network packet analysis software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis.DAAP dissector is one of the audio sharing protocol parsers. A security vulnerability...

5.5CVSS6.8AI score0.01033EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/06/22 11:19 a.m.31 views

CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

5.5CVSS3.2AI score0.01033EPSS
Exploits0References1
Prion
Prion
added 2017/06/14 8:29 p.m.18 views

Code injection

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

4.3CVSS6.8AI score0.01033EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2017/06/14 8:29 p.m.23 views

CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

5.5CVSS6.1AI score0.01033EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2017/06/14 8:29 p.m.2 views

CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

5.5CVSS5.4AI score0.01033EPSS
Exploits0References4
OSV
OSV
added 2017/06/14 8:29 p.m.1 views

DEBIAN-CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

5.5CVSS7.7AI score0.01033EPSS
Exploits0References1
OSV
OSV
added 2017/06/14 8:29 p.m.26 views

CVE-2017-9617

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion uncontrolled recursion in the dissectdaaponetag function in epan/dissectors/packet-daap.c in the DAAP dissector...

5.5CVSS6.6AI score
Exploits0References3
Rows per page
Query Builder