Adplug Security Vulnerabilities and Issues — Adplug CVE List

Adplug ProjectAdplug

8 matches found

CVE•added 2019/08/07 12:6 a.m.•86 views

CVE-2019-14734

Affected software: AdPlug, specifically version 2.3.1. Vulnerability: Multiple heap-based buffer overflows in CmtkLoader::load() inside mtk.cpp. This is the underlying root cause described across connected documents (e.g., Nessus entry for AdPlug 2.3.1 and the CVE-2019-14734 description). Impact/...

8.8CVSS9.1AI score0.00538EPSS

CVE•added 2019/08/18 8:19 p.m.•86 views

CVE-2019-15151

CVE-2019-15151 affects AdPlug 2.3.1, with a double free in Cu6mPlayer (u6m.h). Documented impact is high/critical (CVSS 3.1: 9.8). Remediation in public advisories is to upgrade to AdPlug 2.3.3 (Fedora 33 advisory references adplug-2.3.3-1.fc33); other sources corroborate the issue. No exploitati...

9.8CVSS9.3AI score0.00498EPSS

CVE•added 2019/08/07 12:6 a.m.•79 views

CVE-2019-14732

Summary (CVE-2019-14732): AdPlug 2.3.1 contains multiple heap-based buffer overflows in Ca2mLoader::load() (a2m.cpp). The vulnerability affects the AdPlug library/component and may impact memory safety, aligning with the CVSS base metrics that indicate potential partial confidentiality, integrity...

8.8CVSS9.1AI score0.00285EPSS

CVE•added 2019/08/07 12:6 a.m.•78 views

CVE-2019-14733

CVE-2019-14733 affects AdPlug 2.3.1. The vulnerability is described as multiple heap-based buffer overflows in CradLoader::load() implemented in rad.cpp. CVSS metrics show a high-severity, network-accessible issue (CVSS v3.1: 8.8; network, no privileges, user interaction required; impact to confi...

8.8CVSS9.1AI score0.00538EPSS

CVE•added 2019/08/06 12:3 p.m.•69 views

CVE-2019-14692

CVE-2019-14692 affects AdPlug 2.3.1 with a heap-based buffer overflow in CmkjPlayer::load() of mkj.cpp. CVSSv3 base score 8.8 (NETWORK, LOW ATTACK COMPLEXITY, USER INTERACTION REQUIRED) with HIGH impact on confidentiality, integrity, and availability. Connected sources show mitigations in newer A...

8.8CVSS9.2AI score0.00538EPSS

CVE•added 2019/08/06 12:3 p.m.•67 views

CVE-2019-14690

CVE-2019-14690 affects AdPlug 2.3.1, with a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() within bmf.cpp. Connected sources confirm the vulnerable component is AdPlug and map to fixes in newer packages (e.g., adplug-2.3.3 and related Fedora/openSUSE updates). The Nessus entr...

8.8CVSS9.2AI score0.00538EPSS

CVE•added 2018/10/01 8:0 a.m.•64 views

CVE-2018-17825

CVE-2018-17825 affects AdPlug 2.3.1. The vulnerability is a double-free in the CEmuopl class (emuopl.cpp) caused by a destructor calling OPLDestroy twice, freeing TL_TABLE, SIN_TABLE, AMS_TABLE and VIB_TABLE. Fedora and OpenVAS/Nessus references confirm multiple advisories tying to AdPlug, Audaci...

9.8CVSS9.4AI score0.00455EPSS

CVE•added 2019/08/06 12:3 p.m.•61 views

CVE-2019-14691

CVE-2019-14691 affects AdPlug 2.3.1 with a heap-based overflow in CdtmLoader::load() (dtm.cpp). Root cause: heap overflow in loading DTMs. Impact: potential instability or crash; no explicit exploitation details in provided docs. Mitigation: upgrade to a fixed release (e.g., AdPlug 2.3.3+ as indi...

8.8CVSS9.2AI score0.00316EPSS