Lucene search
K

105 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-49337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes...

4.3CVSS5.9AI score0.00194EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/19 7:53 p.m.8 views

CVE-2026-49337

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.20, a crafted sequence of H.265 NAL units causes decodercontext::readsliceNAL libde265/decctx.cc:481 to attach slice headers to a finished picture object that has no active image unit, resulting in...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References3Affected Software1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in gst-plugins-bad1.0

GStreamer H265 Parsing: Stack-Based Buffer Overflow and Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors...

8.8CVSS7.7AI score0.02009EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.25 views

Linux Distros Unpatched Vulnerability : CVE-2026-53702

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses...

6.5CVSS6.1AI score0.00228EPSS
Exploits0References4
OSV
OSV
added 2026/06/11 7:16 p.m.5 views

DEBIAN-CVE-2026-53702

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS5.7AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2026/06/11 7:16 p.m.5 views

UBUNTU-CVE-2026-53702

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS5.7AI score0.00228EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/11 6:15 p.m.29 views

CVE-2026-53702 Gstreamer1-plugins-bad-free: gstreamer: stack buffer overflow in h.265 buffering period sei parser

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS0.00228EPSS
Exploits0References2
OSV
OSV
added 2026/04/23 12:16 p.m.6 views

USN-8205-1 gst-plugins-bad1.0 vulnerabilities

It was discovered that multiple plugins in GStreamer contained arithmetic overflows. An attacker could possibly use this issue to cause applications using the plugins to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2023-37329, CVE-2023-40474, CVE-2023-40475,...

8.8CVSS6.1AI score0.02009EPSS
Exploits0References7
NVD
NVD
added 2026/03/20 9:17 p.m.3 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS0.00349EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/03/20 8:33 p.m.3 views

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL unit causes a segmentation fault in picparameterset::setderivedvalues. This issue has been patched in version 1.0.17...

8.7CVSS5.2AI score0.00349EPSS
Exploits1
OSV
OSV
added 2026/02/11 1:1 p.m.0 views

MINI-8G9R-52PQ-H265

Bulletin has no description...

4.7CVSS5.1AI score0.00211EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: gstreamer1-plugins-bad-free (UTSA-2026-005272)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005272 advisory. GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

8.8CVSS8.5AI score0.00708EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : gstreamer1-plugins-bad-free-1.22.1-4.el9 (AXSA:2024-8037:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8037:03 advisory. gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video CVE-2023-40474 gstreamer-plugins-bad:...

8.8CVSS8.3AI score0.02009EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : gstreamer1-plugins-bad-free-1.16.1-4.el8 (AXSA:2024-8316:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8316:04 advisory. gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video CVE-2023-40474 gstreamer-plugins-bad:...

8.8CVSS8.3AI score0.02009EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.7 views

MiracleLinux 9 : gstreamer1-plugins-bad-free-1.22.12-4.el9_6 (AXSA:2025-10530:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10530:02 advisory. GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability CVE-2025-3887 Tenable has extracted the preceding...

8.8CVSS8.1AI score0.00708EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

MiracleLinux 8 : gstreamer1-plugins-bad-free-1.16.1-5.el8_10 (AXSA:2025-9964:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9964:01 advisory. GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability CVE-2025-3887 Tenable has extracted the preceding...

8.8CVSS8.1AI score0.00708EPSS
Exploits0References2
OSV
OSV
added 2025/12/02 2:37 p.m.1 views

MINI-84XC-J3XV-H265

Bulletin has no description...

2.4CVSS6.9AI score0.00221EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

TencentOS Server 3: gstreamer1-plugins-bad-free (TSSA-2025:0450)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0450 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.8CVSS8.5AI score0.00708EPSS
Exploits0References2
Mageia
Mageia
added 2025/11/06 1:20 a.m.6 views

Updated gstreamer1.0-plugins-bad packages fix security vulnerability

GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. CVE-2025-3887...

8.8CVSS7.6AI score0.00708EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.3 views

AlmaLinux 10 : gstreamer1-plugins-bad-free (ALSA-2025:8184)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:8184 advisory. GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability CVE-2025-3887 Tenable has extracted the preceding...

8.8CVSS8.1AI score0.00708EPSS
Exploits0References3
Rows per page
Query Builder