CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

BDU FSTEC•added 2025/03/27 12:0 a.m.•6 views

The vulnerability of the vorbis_analysis_wrote() function in the libsndfile library for reading and writing audio files allows a hacker to execute arbitrary code.

The vulnerability of the vorbisanalysiswrote function in the libsndfile library, a library for reading and writing audio files, is related to reading values outside of the allowed range. Exploiting this vulnerability could allow an attacker to execute arbitrary code on the target system...

5.3CVSS6.8AI score0.00308EPSS

Exploits1References13Affected Software10

OSV•added 2025/03/17 8:16 p.m.•5 views

RLSA-2024:11237 Moderate: libsndfile:1.0.31 security update

libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fixes: libsndfile: Segmentation fault error in oggvorbis.c:417 vorbisanalysiswrote CVE-2024-50612 For more details about the security issues, including the impact, a CVSS score,...

5.5CVSS6.7AI score0.00308EPSS

Exploits1References2

RedHat Linux•added 2024/12/17 7:3 p.m.•16 views

Moderate: Red Hat Security Advisory: libsndfile security update

An update for libsndfile is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

5.5CVSS6.4AI score0.00308EPSS

Exploits1References2

RedHat Linux•added 2024/12/17 6:53 p.m.•10 views

Moderate: Red Hat Security Advisory: libsndfile security update

An update for libsndfile is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

5.5CVSS6.4AI score0.00308EPSS

Exploits1References2

OSV•added 2024/12/17 12:0 a.m.•13 views

ALSA-2024:11192 Moderate: libsndfile security update

5.5CVSS5.8AI score0.00308EPSS

Exploits1References4

OSV•added 2024/11/27 7:59 p.m.•9 views

MGASA-2024-0373 Updated libsndfile packages fix security vulnerability

libsndfile suffers from an out-of-bounds read in oggvorbis.c vorbisanalysiswrote...

5.5CVSS5.4AI score0.00308EPSS

Exploits1References3

Veracode•added 2024/11/25 6:59 a.m.•6 views

Out-of-bounds Read

libsndfile.so is vulnerable to Out-of-bounds Read. The vulnerability is due to improper handling of the vorbisanalysiswrote function in the oggvorbis.c file, which fails to validate input data, allowing an attacker to craft a malicious Vorbis file that triggers the out-of-bounds read when process...

5.5CVSS6.4AI score0.00308EPSS

Exploits1References3Affected Software2

OSV•added 2024/10/27 10:15 p.m.•5 views

AZL-51891 CVE-2024-50612 affecting package libsndfile for versions less than 1.0.31-4

libsndfile through 1.2.2 has an oggvorbis.c vorbisanalysiswrote out-of-bounds read...

5.5CVSS6.4AI score0.00308EPSS

Exploits1References1

SUSE CVE•added 2023/02/15 4:43 a.m.•3 views

SUSE CVE-2017-11333

The vorbisanalysiswrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service OOM via a crafted wav file...

5.5CVSS6.7AI score0.04838EPSS

Exploits3References4

CNVD•added 2017/08/03 12:0 a.m.•2 views

Xiph.Org libvorbis lib/block.c file denial of service vulnerability

Xiph.Org libvorbis is an open source audio music encoding and decoding function library . A security vulnerability exists in the 'vorbisanalysiswrote' function in the lib/block.c file in Xiph.Org libvorbis version 1.3.5. A remote attacker can exploit this vulnerability to cause a denial of servic...

5.5CVSS6.8AI score0.04838EPSS

Exploits3References1

Prion•added 2017/07/31 1:29 p.m.•17 views

Design/Logic Flaw

The vorbisanalysiswrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service OOM via a crafted wav file...

4.3CVSS5.3AI score0.04838EPSS

Exploits3References4Affected Software1

Cvelist•added 2017/07/31 1:0 p.m.•28 views

CVE-2017-11333

The vorbisanalysiswrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service OOM via a crafted wav file...

6.3AI score0.04838EPSS

Exploits3References4

exploitpack•added 2017/07/31 12:0 a.m.•41 views

libvorbis 1.3.5 - Multiple Vulnerabilities

libvorbis 1.3.5 - Multiple Vulnerabilities libvorbis multiple vulnerabilities ================ Author : qflb.wu =============== Introduction: ============= The libvorbis package contains a general purpose audio and music encoding format. This is useful for creating encoding and playing decoding...

4.3CVSS0.1AI score0.04838EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by