Lucene search
K

87 matches found

Vulnrichment
Vulnrichment
added 2023/03/24 12:0 a.m.8 views

CVE-2022-20532

In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

9.1AI score0.00489EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/24 12:0 a.m.19 views

CVE-2022-20532

In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

9.2AI score0.00489EPSS
Exploits0References1
OSV
OSV
added 2023/03/01 12:0 a.m.9 views

PUB-A-232242894

In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS7.3AI score0.00489EPSS
Exploits0References2
OSV
OSV
added 2022/08/10 8:15 p.m.3 views

CVE-2022-20346

In updateAudioTrackInfoFromESDSMPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

6.5CVSS6.7AI score0.004EPSS
Exploits0References1
NVD
NVD
added 2022/08/10 8:15 p.m.17 views

CVE-2022-20346

In updateAudioTrackInfoFromESDSMPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

7.5CVSS0.004EPSS
Exploits0References1
Prion
Prion
added 2022/08/10 8:15 p.m.15 views

Out-of-bounds

In updateAudioTrackInfoFromESDSMPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

4.3CVSS6.2AI score0.004EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/09 8:21 p.m.1 views

CVE-2022-20346

In updateAudioTrackInfoFromESDSMPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

6AI score0.004EPSS
Exploits0References1
CVE
CVE
added 2022/08/09 8:21 p.m.190 views

CVE-2022-20346

CVE-2022-20346 affects the Android Media Framework, specifically the updateAudioTrackInfoFromESDS_MPEG4Audio path in MPEG4Extractor.cpp. The root cause is an incorrect bounds check that enables an out-of-bounds read, which could lead to remote information disclosure. The description indicates no ...

7.5CVSS6.1AI score0.004EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/09 8:21 p.m.20 views

CVE-2022-20346

In updateAudioTrackInfoFromESDSMPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

6.4AI score0.004EPSS
Exploits0References1
OSV
OSV
added 2022/08/01 12:0 a.m.29 views

ASB-A-230493653

In updateAudioTrackInfoFromESDSMPEG4Audio of MPEG4Extractor.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

7.5CVSS6.2AI score0.004EPSS
Exploits0References3
Prion
Prion
added 2021/12/15 7:15 p.m.12 views

Out-of-bounds

In MPEG4Source::read of MPEG4Extractor.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10...

4.3CVSS6.3AI score0.00649EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/12/01 12:0 a.m.30 views

ASB-A-188893559

In MPEG4Source::read of MPEG4Extractor.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

6.5CVSS6.3AI score0.00649EPSS
Exploits0References1
OSV
OSV
added 2020/06/11 3:15 p.m.3 views

CVE-2020-0163

In parseSampleAuxiliaryInformationSizes of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

6.5CVSS7AI score0.00635EPSS
Exploits0References1
NVD
NVD
added 2020/06/11 3:15 p.m.25 views

CVE-2020-0161

In parseChunk of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

6.5CVSS0.00635EPSS
Exploits0References1
NVD
NVD
added 2020/06/11 3:15 p.m.18 views

CVE-2020-0131

In parseChunk of MPEG4Extractor.cpp, there is a possible out of bounds write due to incompletely initialized data. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

8.8CVSS0.00714EPSS
Exploits0References1
Prion
Prion
added 2020/06/11 3:15 p.m.13 views

Input validation

In parseSampleAuxiliaryInformationSizes of MPEG4Extractor.cpp, there is possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

4.3CVSS6.5AI score0.00635EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/11 2:43 p.m.41 views

CVE-2020-0162

CVE-2020-0162 affects Android’s Media Framework (MPEG4Extractor.cpp). The vulnerability arises from improper input validation in parseSampleAuxiliaryInformationOffsets, enabling resource exhaustion that could lead to remote Denial of Service on Android 10. The issue’s impact is a DoS with partial...

6.5CVSS6.9AI score0.00635EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/11 2:43 p.m.26 views

CVE-2020-0131

In parseChunk of MPEG4Extractor.cpp, there is a possible out of bounds write due to incompletely initialized data. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

9.3AI score0.00714EPSS
Exploits0References1
CVE
CVE
added 2020/06/11 2:43 p.m.49 views

CVE-2020-0131

CVE-2020-0131 affects Android 10 in the Media Framework’s MPEG4Extractor.cpp parseChunk path, where an out-of-bounds write can occur from incompletely initialized data. This vulnerability allows remote code execution via a network vector with the need for user interaction to exploit (per the CVE ...

8.8CVSS9.1AI score0.00714EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/03/15 9:16 p.m.55 views

CVE-2020-0088

CVE-2020-0088 affects Android 10 and is caused by an issue in parseTrackFragmentRun within MPEG4Extractor.cpp that can lead to resource exhaustion and a remote Denial of Service. Exploitation requires user interaction. The description does not specify the exact vulnerable versions beyond Android-...

6.5CVSS6.9AI score0.00658EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder