Lucene search
+L

6 matches found

EUVD
EUVD
added 2026/04/02 12:31 a.m.15 views

EUVD-2026-18110

A vulnerability was identified in Nothings stb up to 1.22. The impacted element is the function setupfree of the file stbvorbis.c. The manipulation leads to allocation of resources. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The vendor...

5.3CVSS5.5AI score0.00439EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-49969

Malicious code in bioql PyPI...

7.8CVSS7.3AI score0.00522EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-49972

Malicious code in bioql PyPI...

7.1CVSS6.2AI score0.0056EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 4:34 a.m.5 views

CVE-2023-45682

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of bounds read in DECODE macro when var is negative. As it can be seen in the definition of DECODERAW a negative var is a valid value. This issue may be used to leak internal memory...

7.1CVSS6.5AI score0.0056EPSS
Exploits0References1
OSV
OSV
added 2023/10/20 11:26 p.m.16 views

CVE-2023-45678 Off-by-one heap buffer write in start_decoder in stb_vorbis

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

6.5CVSS7.3AI score0.0073EPSS
Exploits0References5
OSV
OSV
added 2019/08/15 5:15 p.m.4 views

UBUNTU-CVE-2019-13219

A NULL pointer dereference in the getwindow function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file...

5.5CVSS6AI score0.00961EPSS
Exploits0References5
Rows per page
Query Builder