Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedHat Linux
RedHat Linuxadded 2023/05/09 10:1 a.m.3 views

gstreamer-plugins-good: Potential heap overwrite in mp4 demuxing using zlib decompression

A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the qt demuxer when processing a specially crafted QuickTime/MP4 file using zlib decompression. This vulnerability can result in application crash, memory corruption, and code execution...

7.8CVSS6.1AI score0.00046EPSS
Exploits1References4
OSV
OSVadded 2019/11/12 7:15 p.m.2 views

CVE-2019-1430

A remote code execution vulnerability exists when Windows Media Foundation improperly parses specially crafted QuickTime media files.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'Microsoft Windows Media Foundation Remote Code...

7.8CVSS7.7AI score0.33652EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2019/10/25 12:0 a.m.28 views

Amazon Linux 2 : exempi (ALAS-2019-1321)

An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file.CVE-2017-18233 An issue was discovered in Exempi before 2.4.3. It...

7.8CVSS6.3AI score0.00873EPSS
Exploits5References6
OSV
OSVadded 2018/03/15 7:29 p.m.0 views

DEBIAN-CVE-2017-18238

An issue was discovered in Exempi before 2.4.4. The TradQTManager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTimeSupport.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .qt file...

5.5CVSS6.8AI score0.00519EPSS
Exploits1References1
CNVD
CNVDadded 2015/08/19 12:0 a.m.1 views

Apple OS X Quartz Composer Framework Memory Corruption Vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A memory corruption vulnerability in the Apple OS X Quartz Composer Framework's handling of QuickTime files allows remote attackers to exploit the vulnerability to construct malicious files that can be parsed by an application, whic...

6.8CVSS7.3AI score0.02022EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2009/02/06 12:45 p.m.3 views

gstreamer-plugins: Array index error while parsing malformed QuickTime media files

Array index error in the gstqtptrakhandler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins aka gstreamer-plugins 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file...

9.3CVSS5.9AI score0.00674EPSS
Exploits1References4
Zero Day Initiative
Zero Day Initiativeadded 2008/04/03 12:0 a.m.27 views

Apple QuickTime Run Length Encoding Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.8CVSS4.1AI score0.18252EPSS
Exploits1References1
Rows per page
Query Builder