Lucene search
+L

11 matches found

RedHat Linux
RedHat Linux
added 2025/05/14 2:4 a.m.5 views

nginx: Memory disclosure in the ngx_http_mp4_module

A vulnerability was found in NGINX’s module, ngxhttpmp4module. This flaw allows a local attacker to cause a worker process crash or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products built with ngxhttpmp4module...

7.1CVSS7.3AI score0.01069EPSS
Exploits2References5
CNNVD
CNNVD
added 2025/01/29 12:0 a.m.5 views

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 that stems from the presence of a buffer overflow vulnerability that allows a local attacker to execute arbitrary code via AP4File::ParseStream and related...

7.8CVSS7.7AI score0.00189EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/29 12:0 a.m.5 views

Bento4 安全漏洞

Bento4 is an open source C++ library for reading and writing MP4 files from Axiomatic Systems. A security vulnerability exists in Bento4 that stems from a floating point exception in the AP4TfraAtom::AP4TfraAtom function...

6.5CVSS6.8AI score0.00302EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/14 12:0 a.m.2 views

F5 Nginx 安全漏洞

F5 Nginx is a lightweight web server/reverse proxy server and email IMAP/POP3 proxy server from F5 USA, distributed under the BSD-like protocol. A security vulnerability exists in F5 Nginx, which stems from a vulnerability that could allow an attacker to cause it to terminate by over-reading NGIN...

5.7CVSS6.8AI score0.0032EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/07/20 12:0 a.m.6 views

PT-2023-7643 · Adobe · Prelude

Name of the Vulnerable Software and Affected Versions: Adobe Prelude versions 22.6 and earlier Description: The issue is related to an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigatio...

5.5CVSS5.3AI score0.00367EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:24 a.m.4 views

SUSE CVE-2018-16845

nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngxhttpmp4module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affec...

8.2CVSS6.7AI score0.09801EPSS
Exploits1References7
The Hacker News
The Hacker News
added 2023/02/03 12:12 p.m.4 views

Iranian OilRig Hackers Using New Backdoor to Exfiltrate Data from Govt. Organizations

The Iranian nation-state hacking group known as OilRig has continued to target government organizations in the Middle East as part of a cyber espionage campaign that leverages a new backdoor to exfiltrate data. "The campaign abuses legitimate but compromised email accounts to send stolen data to...

6.5AI score
Exploits0
CNNVD
CNNVD
added 2021/08/04 12:0 a.m.4 views

Atomicparsley 缓冲区错误漏洞

Atomicparsley is an open source, lightweight command-line program for reading, parsing, and setting metadata into MPEG-4 files, specifically iTunes-style metadata. A security vulnerability exists in Atomicparsley 20210124.204813.840499f, which stems from a stack overflow vulnerability via APar...

9.8CVSS8.3AI score0.02155EPSS
Exploits1References4
CNVD
CNVD
added 2017/09/25 12:0 a.m.3 views

Null Pointer Reference Vulnerability in Thunderbolt Video

Xunlei Video is a media player under Xunlei, which was officially renamed Xunlei Look Player after the launch of version 3.0. A null pointer reference vulnerability exists in Xunlei Video when opening certain MP4 files. An attacker can exploit the vulnerability to cause a denial of service,...

6.9AI score
Exploits0
CNVD
CNVD
added 2017/09/07 12:0 a.m.5 views

Bento4 mp42ts 'AP4_AtomSampleTable::GetSample' function denial of service vulnerability

Bento4 is an open source C++ library for reading and writing MP4 files. mp42ts is one of the tools to convert MP4 files to MPEG2-TS files. A security vulnerability in the Bento4 mp42ts 'AP4AtomSampleTable::GetSample' function allows remote attackers to exploit the vulnerability by submitting a...

5.5CVSS5.4AI score0.0114EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2010/03/25 9:51 a.m.6 views

openssl: missing bn_wexpand return value checks

OpenSSL before 0.9.8m does not check for a NULL return value from bnwexpand function calls in 1 crypto/bn/bndiv.c, 2 crypto/bn/bngf2m.c, 3 crypto/ec/ec2smpl.c, and 4 engines/eubsec.c, which has unspecified impact and context-dependent attack vectors...

10CVSS7.1AI score0.06732EPSS
Exploits1References4
Rows per page
Query Builder