Lucene search
K

44 matches found

Github Security Blog
Github Security Blog
added 2026/06/23 6:32 p.m.9 views

motionEye's Absolute Path Traversal in Media File Handlers Allows Arbitrary File Read

Summary mEye contains an absolute path traversal vulnerability in multiple media file handlers that allows an attacker to read arbitrary files from the filesystem. The affected handlers accept a user-controlled filename parameter and construct filesystem paths using os.path.join. When an absolute...

8.7CVSS6AI score0.00623EPSS
Exploits1References2Affected Software1
SUSE Linux
SUSE Linux
added 2026/03/27 2:43 p.m.3 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox 140.9.0 ESR MFSA 2026-22, bsc1260083: CVE-2026-4684: Race condition, use-after-free in the Graphics: WebRender component CVE-2026-4685: Incorrect boundary conditions in the Graphics: Canvas2D component CVE-2026-4686:...

8.8CVSS6.4AI score0.01279EPSS
Exploits1References78
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-11969

Malware in sbrugna...

10CVSS9.5AI score0.0093EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.6 views

Fedora 41 : webkitgtk (2025-9b8165a4b3)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-9b8165a4b3 advisory. Update to 2.48.5. Changes since 2.48.3: Improve emoji font selection. Improve playback of multimedia streams from blob URLs. Fix crash when using a...

8.8CVSS7AI score0.09185EPSS
Exploits0References10
Microsoft KB
Microsoft KB
added 2024/09/24 12:0 a.m.7 views

September 24, 2024—KB5043131 (OS Build 19045.4957) Preview

September 24, 2024—KB5043131 OS Build 19045.4957 Preview 11/17/20 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 10, version 22H2, see its update history page. Note Follow...

7.3AI score
Exploits0
OSV
OSV
added 2023/09/27 3:19 p.m.3 views

CVE-2023-41309

Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score
Exploits0References2
CNNVD
CNNVD
added 2023/09/27 12:0 a.m.5 views

Huawei HarmonyOS Security Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in HarmonyOS, which stems from an improper privilege control issue in the MediaPlaybackController module. Affected products a...

7.5CVSS6.9AI score0.00549EPSS
Exploits0References3
OSV
OSV
added 2023/05/26 5:15 p.m.5 views

CVE-2023-31226

The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality...

7.5CVSS5.8AI score0.00373EPSS
Exploits0References1
Fedora
Fedora
added 2023/03/14 12:24 a.m.35 views

[SECURITY] Fedora 38 Update: xine-lib-1.2.13-1.fc38

This package contains the Xine library. It can be used to play back various media, decode multimedia files from local disk drives, and display multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some uncommon formats, too...

8.8CVSS7.2AI score0.01118EPSS
Exploits0
OSV
OSV
added 2022/06/25 6:15 a.m.4 views

CVE-2019-25071

A vulnerability was found in Apple iPhone up to 12.4.1. It has been declared as critical. Affected by this vulnerability is Siri. Playing an audio or video file might be able to initiate Siri on the same device which makes it possible to execute commands remotely. Exploit details have been...

8.8CVSS5.7AI score0.01046EPSS
Exploits0References3
CNVD
CNVD
added 2021/08/26 12:0 a.m.16 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-82984)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

6.8CVSS3.7AI score0.01695EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2021/08/23 12:0 a.m.30 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2022-03633)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.GPAC Project on Advanced Content is vulnerable to an integer overflow vulnerability that originates from an...

8.8CVSS2.7AI score0.01695EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/19 12:0 a.m.27 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64076)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS3.3AI score0.0201EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/19 12:0 a.m.13 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64079)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS3.3AI score0.02019EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/19 12:0 a.m.18 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-64077)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering. an integer overflow vulnerability exists in the MPEG-4 decoding functionality in GPAC Project on Advanced...

8.8CVSS3.3AI score0.0201EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/18 12:0 a.m.17 views

GPAC Project on Advanced Content integer overflow vulnerability

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.The MPEG-4 decoding feature of GPAC Project on Advanced Content library 1.0.1 suffers from an integer...

6.8CVSS3.8AI score0.01632EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2021/08/18 12:0 a.m.18 views

GPAC Project on Advanced Content Integer Overflow Vulnerability (CNVD-2021-68450)

GPAC Project on Advanced Content is an open source cross-platform library that implements the MPEG-4 system standard and provides tools for media playback, vector graphics, and 3D rendering.The MPEG-4 decoding feature of GPAC Project on Advanced Content library 1.0.1 suffers from an integer...

6.8CVSS5.2AI score0.01601EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2021/03/10 12:0 a.m.7 views

Binary vulnerability in BMP file parsing for PC version of Lovecraft Universal Connections

The official version of Lovecraft Universal Player is a universal video and audio playback tool created by Lovecraft. Love Qiyi universal player belongs to the universal player, can support most of the mainstream media formats. It also supports the functions of watching pictures, skinning,...

7AI score
Exploits0
Android Security Bulletins
Android Security Bulletins
added 2019/03/04 12:0 a.m.9 views

Pixel Update Bulletin—March 2019Stay organized with collectionsSave and categorize content based on your preferences.

The Pixel Update Bulletin contains details of security vulnerabilities and functional improvements affecting supported Google Pixel devices Google devices. For Google devices, security patch levels of 2019-03-05 or later address all issues in this bulletin and all issues in the March 2019 Android...

7.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2018/11/19 2:22 p.m.83 views

Adaptive Media Player Named Readers' Choice Finalist

In its first time being nominated, Akamai's Adaptive Media Player AMP was named a runner up in the 2018 Streaming Media Readers' Choice Awards "Video Player/SDK" category. The Awards annually survey Streaming Media's readers for the top products and services for streaming video and audio. We are...

0.8AI score
Exploits0
Rows per page
Query Builder