Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-6112

Malware in sbrugna...

5.5CVSS5.8AI score0.01279EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2025/05/22 4:57 p.m.8 views

CVE-2020-13904

FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parseplaylist in libavformat/hls.c frees a pointer, and later that pointer is accessed in avprobeinputformat3 in libavformat/format.c...

5.5CVSS6.7AI score0.01279EPSS
Exploits1
OSV
OSV
added 2025/04/15 11:15 a.m.5 views

CVE-2025-32943

The vulnerability allows any authenticated user to leak the contents of arbitrary “.m3u8” files from the PeerTube server due to a path traversal in the HLS endpoint...

4.3CVSS6.8AI score
Exploits0References2
Cvelist
Cvelist
added 2025/04/15 10:24 a.m.21 views

CVE-2025-32943 PeerTube HLS Video Files Path Traversal

The vulnerability allows any authenticated user to leak the contents of arbitrary “.m3u8” files from the PeerTube server due to a path traversal in the HLS endpoint...

3.7CVSS0.00417EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/11/20 3:15 p.m.4 views

CVE-2023-48090

GPAC 2.3-DEV-rev617-g671976fcc-master is vulnerable to memory leaks in extractattributes mediatools/m3u8.c:329...

7.1CVSS5.8AI score0.00309EPSS
Exploits1References2
Veracode
Veracode
added 2020/08/06 9:38 p.m.29 views

Arbitrary Code Execution

FFmpeg is vulnerable to arbitrary code execution. A use-after-free bug occurs via a crafted EXTINF duration in an m3u8 file because parseplaylist in libavformat/hls.c frees a pointer later access that pointer in avprobeinputformat3 in libavformat/format.c...

5.5CVSS6.9AI score0.01279EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2020/06/07 6:7 p.m.28 views

CVE-2020-13904

FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parseplaylist in libavformat/hls.c frees a pointer, and later that pointer is accessed in avprobeinputformat3 in libavformat/format.c...

7.1AI score0.01279EPSS
Exploits1References7
myhack58
myhack58
added 2016/05/24 12:0 a.m.94 views

FFmpeg remote file stealing vulnerabilities – moving end of the safety analysis report-vulnerability warning-the black bar safety net

0x1 vulnerability of origin FFmpeg remote file stealing vulnerabilities original source is Foreign vulnerability of the platform,the last year has been in the CTF match is used. Official in January of this year released the fixed version and published the vulnerability number CVE-2 0 1 6-1 8 9...

Exploits0
ArchLinux
ArchLinux
added 2016/01/17 12:0 a.m.47 views

ffmpeg: information leakage

A vulnerability in the way FFmpeg handles the concat CVE-2016-1897 and subfile CVE-2016-1898 protocols in a HTTP Live Streaming HLS M3U8 file allows a remote attacker to conduct a cross-origin attacks, and to access arbitrary local files on the vulnerable host. The attack uses a crafted M3U8 file...

4.3CVSS1.7AI score0.14621EPSS
Exploits3References4
NVD
NVD
added 2016/01/15 3:59 a.m.25 views

CVE-2016-1898

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file...

5.5CVSS6.8AI score0.13023EPSS
Exploits2References11
OSV
OSV
added 2016/01/15 3:59 a.m.2 views

DEBIAN-CVE-2016-1897

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file...

5.5CVSS5.8AI score0.14621EPSS
Exploits2References1
NVD
NVD
added 2016/01/15 3:59 a.m.20 views

CVE-2016-1897

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file...

5.5CVSS6.8AI score0.14621EPSS
Exploits2References12
Cvelist
Cvelist
added 2016/01/15 2:0 a.m.30 views

CVE-2016-1897

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file...

6AI score0.14621EPSS
Exploits2References12
CVE
CVE
added 2016/01/15 2:0 a.m.93 views

CVE-2016-1898

CVE-2016-1898 affects FFmpeg 2.x (and Libav fork) where processing an HLS M3U8 playlist can cause an external HTTP request whose URL contains a line from a local file, enabling cross-origin information disclosure. The vulnerability is triggered by the subfile protocol in M3U8 (and the related con...

5.5CVSS5.5AI score0.13023EPSS
Exploits2References11Affected Software1
Debian CVE
Debian CVE
added 2016/01/15 2:0 a.m.33 views

CVE-2016-1898

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file...

5.5CVSS5.9AI score0.13023EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2016/01/14 12:0 a.m.30 views

CVE-2016-1898

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file...

5.5CVSS6.6AI score0.13023EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2016/01/14 12:0 a.m.4 views

PT-2016-4911 · FFmpeg +1 · Ffmpeg +1

Name of the Vulnerable Software and Affected Versions: FFmpeg versions 2.x Description: The issue allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming HLS M3U8 file. This leads to an external HTTP request in which...

8.8CVSS7.2AI score0.14621EPSS
Exploits3References40
Packet Storm
Packet Storm
added 2011/06/03 12:0 a.m.28 views

Audio Converter 8.1 (.pls) Stack Buffer Overflow

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

1.3AI score
Exploits0
Rows per page
Query Builder