Lucene search
+L

12 matches found

osv
osv
added 2026/06/12 12:9 a.m.25 views

OSV-2026-903 UNKNOWN in avi_parse_input_file

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=522061221 Crash type: UNKNOWN Crash state: aviparseinputfile AVIopeninputfile avidmxprocess...

5.3AI score
Exploits0References1
nessus
nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-21837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A...

8.8CVSS7.1AI score0.0201EPSS
Exploits1References2
nessus
nessus
added 2025/08/27 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-21842

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A speciall...

8.8CVSS7.1AI score0.01695EPSS
Exploits1References2
osv
osv
added 2025/07/11 12:18 p.m.5 views

OESA-2025-1771 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: A heap-use-after-free i...

8.8CVSS7.2AI score0.01667EPSS
Exploits12References15
cnnvd
cnnvd
added 2024/01/18 12:0 a.m.6 views

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Unisolar Corporation UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from improper validation of video decoder input, which may result in out-of-bounds reads. It could result in a local denial of service without additional execute...

5.5CVSS6.7AI score0.00081EPSS
Exploits0References2
osv
osv
added 2022/01/15 5:15 p.m.4 views

CVE-2021-33499

Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation issue 2 of 2...

7.5CVSS7.2AI score0.01245EPSS
Exploits0References1
attackerkb
attackerkb
added 2022/01/15 5:15 p.m.2 views

CVE-2021-33499

Pexip Infinity before 26 allows remote denial of service because of missing H.264 input validation issue 2 of 2...

7.5CVSS7AI score0.01245EPSS
Exploits0References2
nvd
nvd
added 2021/08/18 1:15 p.m.19 views

CVE-2021-21856

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow due to unchecked addition arithmetic resulting in a heap-based buffer overflo...

8.8CVSS0.01397EPSS
Exploits1References1
osv
osv
added 2021/08/18 1:15 p.m.5 views

UBUNTU-CVE-2021-21839

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an integer overflow due to unchecked arithmetic resulting in a heap-based buffer overflow that...

8.8CVSS7.5AI score0.0201EPSS
Exploits1References3
cnvd
cnvd
added 2020/01/09 12:0 a.m.3 views

Input Validation Error Vulnerability in Multiple Qualcomm Products (CNVD-2020-41777)

Qualcomm MDM9206 and others are products of Qualcomm Incorporated.The MDM9206 is a central processing unit CPU product.The MDM9607 is a central processing unit CPU product.The SDX20 is a modem.The MDM9206 is a central processing unit CPU product.The MDM9607 is a central processing unit CPU...

7.8CVSS6.9AI score0.00814EPSS
Exploits0References1
seebug
seebug
added 2014/07/01 12:0 a.m.18 views

Rosewill RSVA11001 - Remote Command Injection

No description provided by source. I have been hacking on a Rosewill RSVA11001 for a while now, something to suck up my free time. I had pulled apart the firmware previously but did not succeed in finding a way to get a shell on the device. The box is Hi3515 based, I found an exploit for another...

7.1AI score
Exploits0
seebug
seebug
added 2012/09/18 12:0 a.m.1014 views

Ucenter Home 2.0及以下存储型XSS

简要描述: 以后腾讯的洞发在乌云。 详细说明: 【漏洞原理】 编辑器插入视频input过滤不严,导致日志和群组模块发帖可插入代码。 【测试代码】 发帖包含以下代码: flashhttp://"...

7.1AI score
Exploits0
Rows per page
Query Builder