Lucene search
K

181 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:9 a.m.4 views

CVE-2024-27873

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Processing a maliciously crafted video file may lead to unexpected app...

5.5CVSS5.8AI score0.00293EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:7 a.m.7 views

CVE-2022-25653

Information disclosure in video due to buffer over-read while processing avi file in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

6.8CVSS7.3AI score0.00116EPSS
Exploits0References1
Akamai Blog
Akamai Blog
added 2025/05/14 1:0 p.m.3 views

Comparing Video Processing Units (VPUs), GPUs, and CPUs

More users than ever subscribe to on-demand media streaming and engage with live streaming video over the internet, rather than broadcast television...

6.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/05/13 2:0 p.m.10 views

nginx: specially crafted MP4 file may cause denial of service

A flaw was found in the ngxhttpmp4module module of Nginx. Processing a specially crafted MP4 file can trigger a buffer over-read and cause the nginx process to terminate, resulting in a denial of service...

5.7CVSS7.5AI score0.0032EPSS
Exploits0References5
OSV
OSV
added 2025/05/06 9:17 a.m.4 views

SUSE-SU-2025:1477-1 Security update for libva

This update for libva fixes the following issues: Update to libva version 2.20.0, which includes security fix for: uncontrolled search path may allow an authenticated user to escalate privilege via local access CVE-2023-39929, bsc1224413, jscPED-11066 This includes latest version of one of the...

6.7CVSS6.2AI score0.00243EPSS
Exploits0References5
OSV
OSV
added 2025/04/17 10:2 a.m.3 views

SUSE-SU-2025:20189-1 Security update for kernel-livepatch-MICRO-6-0_Update_3

This update for kernel-livepatch-MICRO-6-0Update3 fixes the following issues: - CVE-2024-57882: Fixed mptcp: fix TCP options overflow. bsc1235916 - CVE-2024-56648: Fixed net: hsr: avoid potential out-of-bound access in fillframeinfo bsc1235452 - CVE-2024-50302: Fixed HID: core: zero-initialize th...

7.8CVSS7.6AI score0.03301EPSS
Exploits1References13
Vulnrichment
Vulnrichment
added 2025/04/08 8:18 a.m.2 views

CVE-2025-22011 ARM: dts: bcm2711: Fix xHCI power-domain

In the Linux kernel, the following vulnerability has been resolved: ARM: dts: bcm2711: Fix xHCI power-domain During s2idle tests on the Raspberry CM4 the VPU firmware always crashes on xHCI power-domain resume: root@raspberrypi:/sys/power echo freeze state 70.724347 xhcisuspend finished 70.727730...

6.1AI score0.00169EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a misconfiguration of the xHCI power domain, which could cause the VPU firmware to crash on recovery...

5.5CVSS6.2AI score0.00169EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/03/11 12:0 a.m.4 views

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), is related to an uncontrolled search path element, which allows a hacker to enhance their privileges.

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library VPL, is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.7CVSS5.5AI score0.00187EPSS
Exploits0References3Affected Software14
CVE
CVE
added 2025/02/20 5:50 p.m.105 views

CVE-2025-27091

OpenH264 decoding vulnerability (CVE-2025-27091) affects OpenH264 2.5.0 and earlier in both SVC and AVC modes. A race condition between SPS memory allocation and subsequent non-IDR NAL memory usage can enable a remote, unauthenticated attacker to trigger a heap overflow by delivering a crafted bi...

8.6CVSS6.9AI score0.00639EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/02/20 5:50 p.m.11 views

CVE-2025-27091 OpenH264 Decoding Functions Heap Overflow Vulnerability

OpenH264 is a free license codec library which supports H.264 encoding and decoding. A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow. This vulnerability is due to a race condition between a Sequence...

8.6CVSS7.8AI score0.00639EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/02/20 5:50 p.m.10 views

CVE-2025-27091

OpenH264 is a free license codec library which supports H.264 encoding and decoding. A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow. This vulnerability is due to a race condition between a Sequence...

8.6CVSS7.6AI score0.00639EPSS
Exploits0
FreeBSD
FreeBSD
added 2025/02/20 12:0 a.m.4 views

cisco -- OpenH264 Decoding Functions Heap Overflow Vulnerability

Cisco reports: A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow. This vulnerability is due to a race condition between a Sequence Parameter Set SPS memory allocation and a subsequent non Instantaneous...

8.6CVSS7.5AI score0.00639EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.2 views

Intel Video Processing Library 代码问题漏洞

Intel Video Processing Library Intel VPL is a video processing library from Intel Corporation USA. A code issue vulnerability exists in Intel Video Processing Library versions prior to 2023.4.0 that stems from an unrestricted path search that results in elevated local privileges...

6.7CVSS6.7AI score0.00187EPSS
Exploits0References1
Intel
Intel
added 2025/02/11 12:0 a.m.14 views

Intel® VPL Software Advisory

Summary: A potential security vulnerability in some Intel® Video Processing Library VPL software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-21830 Description: Uncontrolled search path in...

6.7CVSS7.1AI score0.00187EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/06 1:58 a.m.11 views

CVE-2022-25687

memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

9.8CVSS7.8AI score0.00322EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:5 p.m.8 views

CVE-2022-22087

memory corruption in video due to buffer overflow while parsing mkv clip with no codechecker in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

10CVSS7.8AI score0.00541EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.7 views

The vulnerability of the DXA demultiplexer in the FFmpeg multimedia library allows a hacker to cause a service failure.

The vulnerability of the DXA demultiplexer in the FFmpeg multimedia library is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to cause a service failure...

6.2CVSS6.3AI score0.00271EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.9 views

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), stems from incorrect neutralization of certain elements in the output data. This allows attackers to exploit their privileges.

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library VPL, is related to incorrect elimination of certain elements in the output data. Exploiting this vulnerability can allow an attacker to enhance their privileges...

4.2CVSS5.4AI score0.00187EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.6 views

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), is related to pointer dereferencing errors. This vulnerability allows an attacker to trigger a service failure.

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library VPL, is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

2.2CVSS5.5AI score0.00176EPSS
Exploits0References4Affected Software3
Rows per page
Query Builder