Lucene search
K

181 matches found

BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.7 views

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), is related to reading beyond the buffer boundaries, allowing an attacker to disclose protected information.

The vulnerability of the software tools for accelerated video processing at the Intel Video Processing Library VPL level is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to disclose protected information...

2.2CVSS5.6AI score0.00184EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.8 views

The vulnerability of the software tools for accelerated video processing at the hardware level, the Intel Video Processing Library (VPL), is related to integer overflow. This vulnerability allows an attacker to exploit their privileges.

The vulnerability of the Intel Video Processing Library VPL, a software tool designed for accelerated video processing at the hardware level, is related to a numerical overflow vulnerability. Exploiting this vulnerability can allow an attacker to gain increased privileges...

4.8CVSS5.5AI score0.0021EPSS
Exploits0References5Affected Software3
AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.3 views

Astra Linux – Vulnerability in ffmpeg

A vulnerability was discovered in FFmpeg up to version 7.0.1. It has been classified as critical. This issue affects the pnmDecodeFrame function in the /libavcodec/pnmdec.c library. The vulnerability causes a heap-based buffer overflow. The attack can be initiated remotely. The exploit has been...

8.8CVSS6.7AI score0.01084EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.4 views

Intel VPL 输入验证错误漏洞

Intel VPL is a video processing library from Intel Corporation USA . An input validation error vulnerability exists in Intel VPL versions prior to 24.1.4, which stems from an integer overflow. An attacker can exploit the vulnerability to elevate privileges...

4.8CVSS6.5AI score0.0021EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.3 views

Intel VPL 安全漏洞

Intel VPL is a video processing library from Intel Corporation USA . A security vulnerability exists in Intel VPL versions prior to 24.1.4, which is caused by a null pointer dereference. An attacker exploiting this vulnerability could cause a denial of service on the system...

2.2CVSS6.2AI score0.00176EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.4 views

Intel VPL 安全漏洞

Intel VPL is a video processing library from Intel Corporation USA . A security vulnerability exists in Intel VPL versions prior to 24.1.4, which stems from improper buffer restriction. An attacker can exploit the vulnerability to elevate privileges...

4.2CVSS6.6AI score0.00187EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.6 views

Intel VPL 缓冲区错误漏洞

Intel VPL is a video processing library from Intel Corporation USA . A buffer error vulnerability exists in Intel VPL versions prior to 24.1.4, which originates from a memory out-of-bounds read. An attacker can exploit the vulnerability to obtain sensitive information...

2.2CVSS6.5AI score0.00184EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/16 11:22 p.m.15 views

CVE-2024-40841

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. Processing a maliciously crafted video file may lead to unexpected app termination...

6.8AI score0.00317EPSS
Exploits0References2
OSV
OSV
added 2024/07/29 11:15 p.m.5 views

CVE-2024-27873

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Processing a maliciously crafted video file may lead to unexpected app...

5.5CVSS5.8AI score0.00293EPSS
Exploits0References14
OSV
OSV
added 2024/07/12 11:8 a.m.5 views

OESA-2024-1833 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: Integer overflow...

5.5CVSS6.7AI score0.00197EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/10 12:0 a.m.11 views

PT-2024-30693

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns handling an invalid decoder vsi in the vpu dec init function to ensure the decoder vsi is valid for future use. This is related to the media: mediatek: vcodec componen...

5.5CVSS5.5AI score0.00225EPSS
Exploits0
CNNVD
CNNVD
added 2024/05/16 12:0 a.m.5 views

Intel Media SDK 和 Intel oneVPL software 安全漏洞

Intel Media SDK is a multimedia SDK software development kit from Intel Corporation USA. It is used for video encoding, decoding and processing in Windows and embedded Linux applications. A security vulnerability previously existed in Intel Media SDK and Intel oneVPL software version 23.3.5, whic...

3.9CVSS5.9AI score0.00275EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/06 12:0 a.m.2 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from an information disclosure when parsing dts header atoms in video...

6.8CVSS6.2AI score0.00116EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2024/04/17 7:15 p.m.4 views

CVE-2024-31585

FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avfshowspectrum.c. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted input...

5.3CVSS7.3AI score0.00279EPSS
Exploits0References12
Schneier on Security
Schneier on Security
added 2024/02/22 5:8 p.m.13 views

New Image/Video Prompt Injection Attacks

Simon Willison has been playing with the video processing capabilities of the new Gemini Pro 1.5 model from Google, and its really impressive. Which means a lot of scary new video prompt injection attacks. And remember, given the current state of technology, prompt injection attacks are impossibl...

7.5AI score
Exploits0
OSV
OSV
added 2023/12/27 11:15 p.m.5 views

AZL-62423 CVE-2023-6879 affecting package libao 1.2.0-24

Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1looprestorationdealloc...

9.8CVSS6.5AI score0.01165EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2023/12/14 12:0 a.m.6 views

The vulnerability of the cloud-based video conversion, annotation, and format conversion application for Adobe Prelude involves accessing an uninitialized pointer, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of the cloud-based video conversion, annotation, and format conversion application for Adobe Prelude relates to access to an uninitialized pointer during processing of MP4 files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected informati...

5.5CVSS5.5AI score0.00367EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/06 12:0 a.m.4 views

PT-2023-24066 · Mediatek +1 · Mt6883 +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds write due to a missing bounds check in video processing. This could lead to local escalation of privile...

7.8CVSS7.5AI score0.00123EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/11/05 12:0 a.m.14 views

Fedora: Security Advisory (FEDORA-2023-ea65146fd4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS4.8AI score0.00437EPSS
Exploits0References6
Fedora
Fedora
added 2023/11/03 6:52 p.m.33 views

[SECURITY] Fedora 39 Update: oneVPL-2023.3.1-1.fc39

The oneAPI Video Processing Library oneVPL provides a single video processi ng API for encode, decode, and video processing that works across a wide range of accelerators. The base package is limited to the dispatcher and samples. To use oneVPL for video processing you need to install at least on...

5.5CVSS4.7AI score0.00437EPSS
Exploits0
Rows per page
Query Builder