PT-2024-10422

Name of the Vulnerable Software and Affected Versions FFmpeg version 6.1.1 Description The issue is related to an integer overflow vulnerability in the parse options function of sbgdec.c within the libavformat module. This vulnerability allows for negative duration values to be accepted without...

PT-2023-9848 · Tcpreplay +4 · Tcpreplay +4

Name of the Vulnerable Software and Affected Versions: TCPprep version 4.4.3 Description: The issue allows a remote attacker to cause a denial of service via the parse list function. This is related to a pointer dereference issue in the PCAP file handler of the Tcpreplay utility. Exploitation of...

PT-2022-8904 · Unknown · Ion-Parser

Name of the Vulnerable Software and Affected Versions: ion-parser versions all Description: The issue affects the ion-parser package, where an attacker can submit a malicious INI file to an application that uses the parse function, leading to prototype pollution on the application. This can be...

PT-2021-11262 · Easy-Xml · Easy-Xml

Name of the Vulnerable Software and Affected Versions: Easy-XML version 0.5.0 Description: The issue allows an attacker to expose sensitive data or perform a denial of service via a crafted external entity entered into the XML content as input. This is due to a XML External Entity XXE vulnerabili...